An issue discovered in Pluck CMS v.4.7.10-dev2 allows a remote malicious user to execute arbitrary php code via the hidden parameter to admin.php when editing a page.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
pluck-cms pluck 4.7.10 |