RSS   Vulnerabilities for 'Tp5cms'   RSS

2018-11-29
 
CVE-2018-19693

CWE-79
 

 
An issue was discovered in tp5cms through 2017-05-25. admin.php/system/set.html has XSS via the title parameter.

 
 
CVE-2018-19692

CWE-434
 

 
An issue was discovered in tp5cms through 2017-05-25. admin.php/upload/picture.html allows remote attackers to execute arbitrary PHP code by uploading a .php file with the image/jpeg content type.

 
2018-08-19
 
CVE-2018-15568

CWE-352
 

 
tp5cms through 2017-05-25 has CSRF via admin.php/category/delete.html.

 
 
CVE-2018-15566

 

 
tp5cms through 2017-05-25 has XSS via the admin.php/article/index.html q parameter.

 


Copyright 2024, cxsecurity.com

 

Back to Top