Critical severity9.8NVD Advisory· Published Jul 22, 2018· Updated Jun 17, 2026
CVE-2018-14501
CVE-2018-14501
Description
manager/admin_ajax.php in joyplus-cms 1.6.0 has SQL Injection, as demonstrated by crafted POST data beginning with an "m_id=1 AND SLEEP(5)" substring.
Affected products
1- Range: =1.6.0
Patches
Vulnerability mechanics
References
1- github.com/joyplus/joyplus-cms/issues/432nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.