📦 Joyplus Cms

by Joyplus Cms Project

🔍 What is Joyplus Cms?

Description coming soon...

🛡️ Security Overview

Click on a severity to filter vulnerabilities

⚠️ Known Vulnerabilities

CVE-2018-14334

CRITICAL CVSS 9.8 Jul 17, 2018

This vulnerability allows attackers to upload arbitrary PHP files to joyplus-cms 1.6.0 due to improper file extension validation. Attackers can execute malicious code on the server, potentially gainin...

CVE-2020-20636

HIGH CVSS 7.5 Jun 20, 2023

This SQL injection vulnerability in Joyplus-cms v1.6.0 allows remote attackers to execute arbitrary SQL commands via the id parameter in the goodbad() function. Attackers can potentially access, modif...

CVE-2019-17175

HIGH CVSS 7.5 Oct 4, 2019

This vulnerability allows attackers to perform absolute path traversal via the manager/admin_pic.php endpoint in joyplus-cms 1.6.0. By manipulating the 'rootpath' parameter, attackers can access arbit...