Skip to main content

Tp5Cms

4 CVEs product

Monthly

CVE-2018-19693 MEDIUM POC This Month

An issue was discovered in tp5cms through 2017-05-25. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS PHP Tp5Cms
NVD GitHub
CVSS 3.0
6.1
EPSS
0.7%
CVE-2018-19692 CRITICAL POC Act Now

An issue was discovered in tp5cms through 2017-05-25. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

File Upload PHP Tp5Cms
NVD GitHub
CVSS 3.0
9.8
EPSS
1.5%
CVE-2018-15568 HIGH This Week

tp5cms through 2017-05-25 has CSRF via admin.php/category/delete.html. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF PHP Tp5Cms
NVD GitHub
CVSS 3.0
8.8
EPSS
0.5%
CVE-2018-15566 MEDIUM POC This Month

tp5cms through 2017-05-25 has XSS via the admin.php/article/index.html q parameter. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS PHP Tp5Cms
NVD GitHub
CVSS 3.0
6.1
EPSS
0.7%
EPSS 1% CVSS 6.1
MEDIUM POC This Month

An issue was discovered in tp5cms through 2017-05-25. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS PHP Tp5Cms
NVD GitHub
EPSS 2% CVSS 9.8
CRITICAL POC Act Now

An issue was discovered in tp5cms through 2017-05-25. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

File Upload PHP Tp5Cms
NVD GitHub
EPSS 0% CVSS 8.8
HIGH This Week

tp5cms through 2017-05-25 has CSRF via admin.php/category/delete.html. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF PHP Tp5Cms
NVD GitHub
EPSS 1% CVSS 6.1
MEDIUM POC This Month

tp5cms through 2017-05-25 has XSS via the admin.php/article/index.html q parameter. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS PHP Tp5Cms
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy