Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Pluck
(Pluck\-Cms)| Repositories | https://github.com/pluck-cms/pluck |
| #Vulnerabilities | 42 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2023-12-14 | CVE-2023-50564 | An arbitrary file upload vulnerability in the component /inc/modules_install.php of Pluck-CMS v4.7.18 allows attackers to execute arbitrary code via uploading a crafted ZIP file. | Pluck | 8.8 | ||
| 2024-08-16 | CVE-2024-43042 | Pluck CMS 4.7.18 does not restrict failed login attempts, allowing attackers to execute a brute force attack. | Pluck | 9.8 |