Medium severity4.8NVD Advisory· Published Apr 13, 2018· Updated Jun 17, 2026
CVE-2018-10096
CVE-2018-10096
Description
joyplus-cms 1.6.0 has XSS via the device_name parameter in a manager/admin_ajax.php?action=save flag=add request.
Affected products
2= 1.6.0+ 1 more
- (no CPE)range: = 1.6.0
- (no CPE)range: = 1.6.0
Patches
Vulnerability mechanics
References
1- github.com/joyplus/joyplus-cms/issues/424nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.