VYPR
Unrated severityNVD Advisory· Published May 17, 2021· Updated Aug 4, 2024

CVE-2020-18195

CVE-2020-18195

Description

Cross Site Request Forgery (CSRF) in Pluck CMS v4.7.9 allows remote attackers to execute arbitrary code and delete a specific article via the component " /admin.php?action=page."

Affected products

2
  • Pluck/Pluck CMSdescription
  • Pluck/Pluckllm-fuzzy
    Range: =4.7.9

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.