Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2025-46099 |
|
Unrestricted File Upload in pluck-cms (CVE-2025-46099)
vulnerability in pluck-cms (CVE-2025-46099). Successful exploitation can lead to full system takeover.
|
| CVE-2014-8706 |
|
Information Disclosure in pluck-cms (CVE-2014-8706)
vulnerability in pluck-cms (CVE-2014-8706). Risk of unauthorized operations or information disclosure.
|
| CVE-2014-8707 |
|
Cross-Site Scripting (XSS) in pluck-cms (CVE-2014-8707)
cross-site scripting in pluck-cms (CVE-2014-8707). Risk of unauthorized operations or information disclosure.
|
| CVE-2014-8708 |
|
Pluck CMS 4.7.2 allows remote attackers to execute arbitrary code via the blog form feature.
Pluck CMS 4.7.2 allows remote attackers to execute arbitrary code via the blog form feature.
|