📦 Pluxml

CVE-2020-18185 is a critical remote code execution vulnerability in PluXml 5.7 that allows attackers to execute arbitrary PHP code by modifying the configuration file. This affects all PluXml 5.7 inst...

PluXml Blog v5.8.9 contains a remote code execution vulnerability in the Static Pages feature. Attackers can inject malicious payloads into the Content field to execute arbitrary code on the server. T...

CVE-2022-25018 is a critical remote code execution vulnerability in Pluxml CMS that allows attackers to execute arbitrary PHP code by injecting it into static pages. This affects all users running Plu...

This vulnerability in PluXml's Media Management Module allows remote attackers to execute arbitrary code through deserialization of manipulated file arguments. It affects all PluXml installations up t...

CVE-2025-67436 is an authenticated remote code execution vulnerability in PluXml CMS 5.8.22. Attackers with administrator panel access can inject malicious PHP webshells into theme files like home.php...