← Back to CVE List
CVE-2018-16729
Published:
2018-09-12T16:29Z
Last Modified:
2024-11-21T03:53Z
Source:
MITRE CVE List
License:
MITRE-CVE-TOS
Pluck 4.7.7 allows XSS via an SVG file that contains Javascript in a SCRIPT element, and is uploaded via pages->manage under admin.php?action=files. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt