CVE-2024-48138
PluXml v5.8.16 and earlier is affected by a remote code execution (RCE) in the /PluXml/core/admin/parametres_edittpl.php component. The issue allows an attacker to inject a crafted payload into a template to execute arbitrary code. Connected documents corroborate the vulnerability in this specifi...