cpe:/a:pluck-cms:pluck:4.6.1 CVE-2008-6842 2009-07-02T06:30:00.187-04:00 2017-09-28T21:33:22.213-04:00 6.8 NETWORK MEDIUM NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2009-07-02T07:52:00.000-04:00 BID 34207 SECUNIA 34415 EXPLOIT-DB 8271 XF pluck-modulepagessite-file-include(49378) Directory traversal vulnerability in data/modules/blog/module_pages_site.php in Pluck 4.6.1 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the post parameter.