Critical severity9.8NVD Advisory· Published Jun 7, 2018· Updated Jun 17, 2026
CVE-2018-12039
CVE-2018-12039
Description
joyplus-cms 1.6.0 allows Remote Code Execution because of an Arbitrary SQL command execution issue in manager/index.php involving use of a "/!select/" substring in place of a select substring.
Affected products
2= 1.6.0+ 1 more
- (no CPE)range: = 1.6.0
- (no CPE)range: = 1.6.0
Patches
Vulnerability mechanics
References
1- github.com/joyplus/joyplus-cms/issues/425nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.