CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-22636

PluXml Blog v5.8.9 was discovered to contain a remote code execution (RCE) vulnerability in the Static Pages feature. This vulnerability is exploited via injecting a crafted payload into the Content field.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.048

EPSS Ranking 89.1%

CVSS Severity

CVSS v3 Score 8.8

References

https://github.com/capture0x/PluXml-RCE/blob/main/PluXml.txt
https://github.com/capture0x/PluXml-RCE/blob/main/PluXml.txt

Products affected by CVE-2024-22636

Pluxml » Pluxml » Version: 5.8.9

cpe:2.3:a:pluxml:pluxml:5.8.9

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-22636

Products

Pricing

Contact Us