joyplus-cms 1.6.0 allows remote attackers to execute arbitrary PHP code via /install by placing the code in the name of an object in the database.
References
Link | Resource |
---|---|
https://github.com/joyplus/joyplus-cms/issues/442 | Exploit Issue Tracking Third Party Advisory |
Configurations
History
No history.
Information
Published : 2019-09-21 18:15
Updated : 2024-02-04 20:39
NVD link : CVE-2019-16656
Mitre link : CVE-2019-16656
CVE.ORG link : CVE-2019-16656
JSON object : View
Products Affected
joyplus_project
- joyplus
CWE