Vulnerabilities

CVE-2018-7197

by Fred · 17/02/2018

An issue was discovered in Pluck through 4.7.4. A stored cross-site scripting (XSS) vulnerability allows remote unauthenticated users to inject arbitrary web script or HTML into admin/blog Reaction Comments via a crafted URL.

Date published : 2018-02-17

https://github.com/pluck-cms/pluck/issues/47

Similar

Tags: Cybersecurity Alert