Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
pluxml pluxml 5.8.7 vulnerabilities and exploits
(subscribe to this query)
312
VMScore
CVE-2022-24585
A stored cross-site scripting (XSS) vulnerability in the component /core/admin/comment.php of PluXml v5.8.7 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload in the author parameter.
Pluxml Pluxml 5.8.7
312
VMScore
CVE-2022-24587
A stored cross-site scripting (XSS) vulnerability in the component core/admin/medias.php of PluXml v5.8.7 allows malicious users to execute arbitrary web scripts or HTML.
Pluxml Pluxml 5.8.7
312
VMScore
CVE-2022-24586
A stored cross-site scripting (XSS) vulnerability in the component /core/admin/categories.php of PluXml v5.8.7 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload in the content and thumbnail parameters.
Pluxml Pluxml 5.8.7
312
VMScore
CVE-2021-38603
PluXML 5.8.7 allows core/admin/profil.php stored XSS via the Information field.
Pluxml Pluxml 5.8.7
1 Github repository
312
VMScore
CVE-2021-38602
PluXML 5.8.7 allows Article Editing stored XSS via Headline or Content.
Pluxml Pluxml 5.8.7
1 Github repository
578
VMScore
CVE-2022-25018
Pluxml v5.8.7 exists to allow malicious users to execute arbitrary code via crafted PHP code inserted into static pages.
Pluxml Pluxml 5.8.7
1 Github repository
312
VMScore
CVE-2022-25020
A cross-site scripting (XSS) vulnerability in Pluxml v5.8.7 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload in the thumbnail path of a blog post.
Pluxml Pluxml 5.8.7
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4671
unauthorized
CVE-2024-4776
CVE-2024-3407
CVE-2024-26026
CVE-2024-32888
wireless
CVE-2024-4656
template injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started