Tp5cms Project: >> Tp5cms >> 2017-05-25 Security Vulnerabilities
An issue was discovered in tp5cms through 2017-05-25. admin.php/system/set.html has XSS via the keywords parameter.
CVSS Score
6.1
EPSS Score
0.001
Published
2023-06-14
An issue was discovered in tp5cms through 2017-05-25. admin.php/upload/picture.html allows remote attackers to execute arbitrary PHP code by uploading a .php file with the image/jpeg content type.
CVSS Score
9.8
EPSS Score
0.008
Published
2018-11-29
An issue was discovered in tp5cms through 2017-05-25. admin.php/system/set.html has XSS via the title parameter.
CVSS Score
6.1
EPSS Score
0.002
Published
2018-11-29
tp5cms through 2017-05-25 has XSS via the admin.php/article/index.html q parameter.
CVSS Score
6.1
EPSS Score
0.002
Published
2018-08-20
tp5cms through 2017-05-25 has CSRF via admin.php/category/delete.html.
CVSS Score
8.8
EPSS Score
0.001
Published
2018-08-20