Security Pluck CMS 4.7.3 Add-Page Cross Site Request Forgery October 18, 2016 007admin Leave a comment Pluck CMS version 4.7.3 suffers from an add-page cross site request forgery vulnerability.