VYPR
Medium severity4.8NVD Advisory· Published Apr 13, 2018· Updated Jun 17, 2026

CVE-2018-10096

CVE-2018-10096

Description

joyplus-cms 1.6.0 has XSS via the device_name parameter in a manager/admin_ajax.php?action=save flag=add request.

Affected products

2
  • Joyplus/Joyplus CMSinferred2 versions
    = 1.6.0+ 1 more
    • (no CPE)range: = 1.6.0
    • (no CPE)range: = 1.6.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.

CVE-2018-10096 · Medium · VYPR