2019-09-21 17:02:35
mitre
PUBLISHED
joyplus-cms 1.6.0 allows remote attackers to execute arbitrary PHP code via /install by placing the code in the name of an object in the database.