Lucene search
HistoryDec 30, 2014 - 2:59 a.m.
CVE-2013-3295
cve-2013-3295
directory traversal
exponent cms
security vulnerability
nvd
7.1 High
AI Score
Confidence
Low
7.5 High
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.009 Low
EPSS
Percentile
83.0%
Directory traversal vulnerability in install/popup.php in Exponent CMS before 2.2.0 RC1 allows remote attackers to include and execute arbitrary local files via a … (dot dot) in the page parameter.
Affected configurations
Node
exponentcmsexponent_cmsRange≤2.2.0
| CPE | Name | Operator | Version |
|---|---|---|---|
| exponentcms:exponent_cms | exponentcms exponent cms | le | 2.2.0 |
References
Related
prion
prion
Directory traversal
2014-12-30 02:59:00
cvelist
cvelist
CVE-2013-3295
2014-12-30 02:00:00
nvd
nvd
CVE-2013-3295
2014-12-30 02:59:01
securityvulns
securityvulns
Multiple Vulnerabilities in Exponent CMS
2013-07-15 00:00:00
packetstorm
packetstorm
Exponent CMS 2.2.0 Beta 3 LFI / SQL Injection
2013-05-15 00:00:00
zdt
zdt
Exponent CMS 2.2.0 Beta 3 LFI / SQL Injection Vulnerabilities
2013-05-16 00:00:00
exploitpack
exploitpack
Exponent CMS 2.2.0 Beta 3 - Multiple Vulnerabilities
2013-05-17 00:00:00
openvas
openvas
Exponent CMS Multiple Vulnerabilities
2013-05-23 00:00:00
htbridge
htbridge
Multiple Vulnerabilities in Exponent CMS
2013-04-24 00:00:00
exploitdb
exploitdb
Exponent CMS 2.2.0 Beta 3 - Multiple Vulnerabilities
2013-05-17 00:00:00
7.1 High
AI Score
Confidence
Low
7.5 High
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.009 Low
EPSS
Percentile
83.0%
Related for CVE-2013-3295