Skip to main content
CVE-2019-16660 HIGH POC This Week

joyplus-cms 1.6.0 has admin_ajax.php?action=savexml&tab=vodplay CSRF. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP CSRF Joyplus
NVD GitHub
CVSS 3.1
8.8
EPSS
0.5%
CVE-2019-16659 HIGH POC This Week

TuziCMS 2.0.6 has index.php/manage/link/do_add CSRF. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP CSRF Tuzicms
NVD GitHub
CVSS 3.1
8.8
EPSS
0.5%
CVE-2019-16658 HIGH POC This Week

TuziCMS 2.0.6 has index.php/manage/notice/do_add CSRF. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP CSRF Tuzicms
NVD GitHub
CVSS 3.1
8.8
EPSS
0.5%
CVE-2019-16655 HIGH POC This Week

joyplus-cms 1.6.0 allows reinstallation if the install/ URI remains available. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Joyplus
NVD GitHub
CVSS 3.1
7.5
EPSS
0.8%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy