EIP-2026-111365
PRE-CVEPlume CMS 1.2.2 - '/manager/xmedia.php' Cross-Site Scripting
Title source: legacyDescription
Plume CMS 1.2.2 - '/manager/xmedia.php' Cross-Site Scripting
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Omer Singer · textwebappsphp
https://www.exploit-db.com/exploits/31304
Details
Status
pre_cve
Tracked Since
Feb 18, 2026