2 matches found
CVE-2020-20919
Pluck CMS 4.7.10-dev2 is affected by a file upload vulnerability in theme.php that enables remote code execution and access to sensitive information. The issue is described for Pluck CMS and is classified with high impact (C/H, I/H, A/H) under CVSSv3.1 with AV:N, AC:L, PR:H, UI:N, S:U, affecting ...
CVE-2020-20919
File upload vulnerability in Pluck CMS v.4.7.10-dev2 allows a remote attacker to execute arbitrary code and access sensitive information via the theme.php file...