Security News CVE-2018-16633 by rootdaemon December 3, 2018 Pluck v4.7.7 allows XSS via the admin.php?action=editpage&page= page title. Don't forget to shareTweet Tags: CVE201816633