CVE-2019-16656

joyplus-cms 1.6.0 allows remote attackers to execute arbitrary PHP code via /install by placing the code in the name of an object in the database.
References
Link Resource
https://github.com/joyplus/joyplus-cms/issues/442 Exploit Issue Tracking Third Party Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:joyplus_project:joyplus:1.6.0:*:*:*:*:*:*:*

History

No history.

Information

Published : 2019-09-21 18:15

Updated : 2024-02-04 20:39


NVD link : CVE-2019-16656

Mitre link : CVE-2019-16656

CVE.ORG link : CVE-2019-16656


JSON object : View

Products Affected

joyplus_project

  • joyplus