2022-03-18 06:33:34
mitre
PUBLISHED
In Pluck 4.7.16, an admin user can use the theme upload functionality at /admin.php?action=themeinstall to perform remote code execution.