AI Score
Confidence
High
EPSS
Percentile
43.9%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Pluck CMS 4.7.18 does not restrict failed login attempts, allowing attackers to execute a brute force attack.
drive.google.com/file/d/1FnLCFP8xDrE1e_4Ft_TZ7VhC-JBkpsL0/view?usp=sharing
github.com/pluck-cms/pluck