Security Advisory

CVE-2020-29607

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-12-16 14:28:27

Last updated 2025-04-16 14:24:37

Assigner mitre

State PUBLISHED

Description

A file upload restriction bypass vulnerability in Pluck CMS before 4.7.13 allows an admin privileged user to gain access in the host through the "manage files" functionality, which may result in remote code execution.

← Browse all CVEs View on cve.org ↗