CVE-2018-16634 - OpenCVE

Pluck v4.7.7 allows CSRF via admin.php?action=settings.

No CVSS v3.1

AV:N/AC:M/Au:N/C:P/I:P/A:P

Vendors	Products
Pluck-cms	Pluck

Configuration 1 [-]

cpe:2.3:a:pluck-cms:pluck:4.7.7:*:*:*:*:*:*:*

References

Link	Resource
https://github.com/security-breachlock/CVE-2018-16634/blob/master/PLUCK_CSRF.pdf	Exploit Third Party Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2018-12-04T16:00:00

Updated: 2019-02-20T15:57:01

Reserved: 2018-09-06T00:00:00

Link: CVE-2018-16634

JSON object: View

NVD Information

Status : Analyzed

Published: 2018-12-04T16:29:00.447

Modified: 2019-02-26T15:44:47.260

Link: CVE-2018-16634

JSON object: View

Redhat Information

No data.

CWE