Unrated severityNVD Advisory· Published May 17, 2021· Updated Aug 4, 2024
CVE-2020-18198
CVE-2020-18198
Description
Cross Site Request Forgery (CSRF) in Pluck CMS v4.7.9 allows remote attackers to execute arbitrary code and delete specific images via the component " /admin.php?action=images."
Affected products
2- Pluck/Pluck CMSdescription
Patches
Vulnerability mechanics
References
1- github.com/pluck-cms/pluck/issues/69mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.