Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2022-26965

In Pluck 4.7.16, an admin user can use the theme upload functionality at /admin.php?action=themeinstall to perform remote code execution.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.227
EPSS Ranking 95.6%
CVSS Severity
CVSS v3 Score 7.2
CVSS v2 Score 6.5
Products affected by CVE-2022-26965
  • Pluck-Cms » Pluck » Version: 4.7.16
    cpe:2.3:a:pluck-cms:pluck:4.7.16


Products
Pricing
Contact Us

Shodan ® - All rights reserved