← Back

Joyplus Cms

joyplus-cms

Vendor: Joyplus Project • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2018-14501
1Joyplus Project
1Joyplus Cms
Nov 21, 2024
Jul 22, 2018
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
manager/admin_ajax.php in joyplus-cms 1.6.0 has SQL Injection, as demonstrated by crafted POST data beginning with an "m_id=1 AND SLEEP(5)" substring.