CVE-2020-25287
Pligg 2.0.3 is affected by a remote command execution vulnerability where the template editor can edit arbitrary files. The issue arises from file editing via the admin_editor.php vector (example: the_file=..%2Findex.php&open=Open). Impact is user-controlled command execution with authenticated a...