7.2 High
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
59.2%
An issue discovered in Pluck CMS v.4.7.10-dev2 allows a remote attacker to execute arbitrary php code via the hidden parameter to admin.php when editing a page.
github.com/pluck-cms/pluck/issues/80