CVE-2020-20919 Information

Description

File upload vulnerability in Pluck CMS v.4.7.10-dev2 allows a remote attacker to execute arbitrary code and access sensitive information via the theme.php file.

Reference

https://github.com/pluck-cms/pluck/issues/85