EUVD-2013-3231

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

Multiple SQL injection vulnerabilities in Exponent CMS allow remote execution of SQL commands.

Reporter	Title	Published	Views	Family All 12
0day.today	Exponent CMS 2.2.0 Beta 3 LFI / SQL Injection Vulnerabilities	16 May 201300:00	–	zdt
CVE	CVE-2013-3294	11 Feb 201417:00	–	cve
Cvelist	CVE-2013-3294	11 Feb 201417:00	–	cvelist
Exploit DB	Exponent CMS 2.2.0 Beta 3 - Multiple Vulnerabilities	17 May 201300:00	–	exploitdb
exploitpack	Exponent CMS 2.2.0 Beta 3 - Multiple Vulnerabilities	17 May 201300:00	–	exploitpack
htbridge	Multiple Vulnerabilities in Exponent CMS	24 Apr 201300:00	–	htbridge
NVD	CVE-2013-3294	11 Feb 201417:55	–	nvd
OpenVAS	Exponent CMS Multiple Vulnerabilities	23 May 201300:00	–	openvas
Packet Storm	Exponent CMS 2.2.0 Beta 3 LFI / SQL Injection	15 May 201300:00	–	packetstorm
Prion	Sql injection	11 Feb 201417:55	–	prion

[
  {
    "enisaIdVendor": [
      {
        "id": "d4527218-64db-3707-9dbd-fc69173b0a08",
        "vendor": {
          "name": "n/a"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "12f2947c-07fd-3b68-8ca2-822fdd0a1363",
        "product": {
          "name": "n/a"
        },
        "product_version": "n/a"
      }
    ]
  }
]

Source	Link
packetstormsecurity	www.packetstormsecurity.com/files/cve/CVE-2013-3294
seclists	www.seclists.org/bugtraq/2013/May/57
osvdb	www.osvdb.org/93447
packetstormsecurity	www.packetstormsecurity.com/files/121643/Exponent-CMS-2.2.0-Beta-3-LFI-SQL-Injection.html
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/84300
htbridge	www.htbridge.com/advisory/HTB23154
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

6.1Medium risk

Vulners AI Score6.1

CVSS 27.5

EPSS0.00616