| Release | Version |
|---|---|
| stretch | 5.5-2 |
| buster | 5.6-1 |
| sid | 5.6-1 |
| Bug | stretch | buster | sid | Description |
|---|---|---|---|---|
| CVE-2021-38603 | vulnerable (no DSA) | vulnerable | vulnerable | PluXML 5.8.7 allows core/admin/profil.php stored XSS via the Informati ... |
| CVE-2021-38602 | vulnerable (no DSA) | vulnerable | vulnerable | PluXML 5.8.7 allows Article Editing stored XSS via Headline or Content ... |
| CVE-2017-1001001 | vulnerable (no DSA) | fixed | fixed | PluXml version 5.6 is vulnerable to stored cross-site scripting vulner ... |
| Bug | stretch | buster | sid | Description |
|---|---|---|---|---|
| CVE-2020-18185 | vulnerable | vulnerable | vulnerable | class.plx.admin.php in PluXml 5.7 allows attackers to execute arbitrar ... |
| CVE-2020-18184 | vulnerable | vulnerable | vulnerable | In PluxXml V5.7,the theme edit function /PluXml/core/admin/parametres_ ... |