Lucene search
GoogleOSV:CVE-2019-9050HistoryFeb 23, 2019 - 7:29 p.m.
CVE-2019-9050
2019-02-2319:29:00
Google
osv.dev
2
An issue was discovered in Pluck 4.7.9-dev1. It allows administrators to execute arbitrary code by using action=installmodule to upload a ZIP archive, which is then extracted and executed.
| CPE | Name | Operator | Version |
|---|---|---|---|
| pluck | eq | 4.7.6 | |
| pluck | eq | 4.7.8-dev1 | |
| pluck | eq | 4.7.8-dev3 | |
| pluck | eq | 4.7.7-dev2 | |
| pluck | eq | 4.7.9-dev1 | |
| pluck | eq | 4.7.3 | |
| pluck | eq | 4.7 | |
| pluck | eq | 4.7.2 | |
| pluck | eq | 4.744 | |
| pluck | eq | 4.7.8-dev2 |
References
Related
nvd
nvd
CVE-2019-9050
2019-02-23 19:29:00
cve
cve
CVE-2019-9050
2019-02-23 19:29:00
prion
prion
Code injection
2019-02-23 19:29:00
cvelist
cvelist
CVE-2019-9050
2019-02-23 19:00:00