Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
pluxml vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2022-24587
A stored cross-site scripting (XSS) vulnerability in the component core/admin/medias.php of PluXml v5.8.7 allows malicious users to execute arbitrary web scripts or HTML.
Pluxml Pluxml 5.8.7
NA
CVE-2007-3542
Cross-site scripting (XSS) vulnerability in admin/auth.php in Pluxml 0.3.1 allows remote malicious users to inject arbitrary web script or HTML via the msg parameter.
Pluxml Pluxml 0.3.1
1 EDB exploit
5.4
CVSSv3
CVE-2017-1001001
PluXml version 5.6 is vulnerable to stored cross-site scripting vulnerability, within the article creation page, which can result in escalation of privileges.
Pluxml Pluxml 5.6
9.8
CVSSv3
CVE-2020-18185
class.plx.admin.php in PluXml 5.7 allows malicious users to execute arbitrary PHP code by modify the configuration file in a linux environment.
Pluxml Pluxml 5.7
8.8
CVSSv3
CVE-2024-22636
PluXml Blog v5.8.9 exists to contain a remote code execution (RCE) vulnerability in the Static Pages feature. This vulnerability is exploited via injecting a crafted payload into the Content field.
Pluxml Pluxml 5.8.9
7.2
CVSSv3
CVE-2020-18184
In PluxXml V5.7,the theme edit function /PluXml/core/admin/parametres_edittpl.php allows remote malicious users to execute arbitrary PHP code by placing this code into a template.
Pluxxml Pluxxml 5.7
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-34377
CVE-2024-20859
CVE-2023-49606
inject
arbitrary
CVE-2024-33788
CVE-2024-30973
IDOR
CVE-2024-33907
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2