Lucene search

Tp5Cms Security Vulnerabilities

cve

CVE-2018-15566

tp5cms through 2017-05-25 has XSS via the admin.php/article/index.html q parameter.

6.1CVSS

6AI Score

0.001EPSS

2018-08-20 01:29 AM

cve

CVE-2018-15568

tp5cms through 2017-05-25 has CSRF via admin.php/category/delete.html.

8.8CVSS

8.7AI Score

0.001EPSS

2018-08-20 01:29 AM

cve

CVE-2018-19692

An issue was discovered in tp5cms through 2017-05-25. admin.php/upload/picture.html allows remote attackers to execute arbitrary PHP code by uploading a .php file with the image/jpeg content type.

9.8CVSS

9.6AI Score

0.011EPSS

2018-11-29 06:29 PM

cve

CVE-2018-19693

An issue was discovered in tp5cms through 2017-05-25. admin.php/system/set.html has XSS via the title parameter.

6.1CVSS

5.9AI Score

0.001EPSS

2018-11-29 06:29 PM

cve

CVE-2021-31280

An issue was discovered in tp5cms through 2017-05-25. admin.php/system/set.html has XSS via the keywords parameter.

6.1CVSS

5.9AI Score

0.001EPSS

2023-06-14 02:15 PM