Design/Logic Flaw

2023-06-2220:15:00

PRIOn knowledge base

www.prio-n.com

design flaw

logic flaw

remote code execution

pluck cms

security vulnerability

manage file functionality

7.2 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

50.0%

JSON

An issue discovered in /admin.php in Pluck CMS 4.7.15 through 4.7.16-dev5 allows remote attackers to run arbitrary code via manage file functionality.

CPENameOperatorVersion
pluckeq4.7.16 dev1
pluckeq4.7.16 dev2
pluckeq4.7.16 dev3
pluckeq4.7.16 dev4
pluckeq4.7.16 dev5
pluckge4.7.15
plucklt4.7.16
pluckeq4.7.16