Information on source package pluxml

Available versions

Release	Version
jessie	5.3.1-2
stretch	5.5-2
buster	5.6-1

Open issues

Bug	jessie	stretch	buster	Description
CVE-2024-48138	vulnerable	vulnerable	vulnerable	A remote code execution (RCE) vulnerability in the component /PluXml/c ...
CVE-2024-22636	vulnerable	vulnerable	vulnerable	PluXml Blog v5.8.9 was discovered to contain a remote code execution ( ...
CVE-2022-25020	vulnerable	vulnerable	vulnerable	A cross-site scripting (XSS) vulnerability in Pluxml v5.8.7 allows att ...
CVE-2022-25018	vulnerable	vulnerable	vulnerable	Pluxml v5.8.7 was discovered to allow attackers to execute arbitrary c ...
CVE-2022-24587	vulnerable	vulnerable	vulnerable	A stored cross-site scripting (XSS) vulnerability in the component cor ...
CVE-2022-24586	vulnerable	vulnerable	vulnerable	A stored cross-site scripting (XSS) vulnerability in the component /co ...
CVE-2022-24585	vulnerable	vulnerable	vulnerable	A stored cross-site scripting (XSS) vulnerability in the component /co ...
CVE-2021-38603	vulnerable	vulnerable (no DSA)	vulnerable (no DSA, ignored)	PluXML 5.8.7 allows core/admin/profil.php stored XSS via the Informati ...
CVE-2021-38602	vulnerable	vulnerable (no DSA)	vulnerable (no DSA, ignored)	PluXML 5.8.7 allows Article Editing stored XSS via Headline or Content ...
CVE-2020-18185	vulnerable	vulnerable	vulnerable	class.plx.admin.php in PluXml 5.7 allows attackers to execute arbitrar ...
CVE-2020-18184	vulnerable	vulnerable	vulnerable	In PluxXml V5.7,the theme edit function /PluXml/core/admin/parametres_ ...
CVE-2017-1001001	vulnerable (no DSA)	vulnerable (no DSA)	fixed	PluXml version 5.6 is vulnerable to stored cross-site scripting vulner ...
CVE-2012-4675	undetermined	undetermined	undetermined	Cross-site scripting (XSS) vulnerability in PluXml 5.1.6 allows remote ...
CVE-2012-4674	undetermined	undetermined	undetermined	PluXml before 5.1.6 allows remote attackers to obtain the installation ...
CVE-2007-3542	undetermined	undetermined	undetermined	Cross-site scripting (XSS) vulnerability in admin/auth.php in Pluxml 0 ...
CVE-2007-3432	undetermined	undetermined	undetermined	Unrestricted file upload vulnerability in admin/images.php in Pluxml 0 ...