888 matches found
CVE-2015-8684
CVE-2015-8684 affects Exponent CMS prior to 2.3.7. The flaw arises from insufficiently restricting upload file types, enabling an attacker to upload an HTML file and trigger cross-site scripting via the elFinder functionality. Impact described as remote XSS and possibly other unspecified effects....
CVE-2015-8684
Exponent CMS before 2.3.7 does not properly restrict the types of files that can be uploaded, which allows remote attackers to conduct cross-site scripting XSS attacks and possibly have other unspecified impact as demonstrated by uploading a file with an .html extension, then accessing it via the...
CVE-2015-8667
CVE-2015-8667 affects Exponent CMS prior to 2.3.5. The vulnerability is a Cross-site Scripting (XSS) in the Reset Your Password module that allows injection of arbitrary script/HTML via the Username/Email field. Affected component: Reset Your Password workflow; root cause: insufficient sanitizati...
CVE-2016-7791
Exponent CMS 2.3.9 suffers from a remote code execution vulnerability in /install/index.php. An attacker can upload an evil 'exploit.tar.gz' file to the website, then extract it by visiting '/install/index.php?installsample=../../files/exploit', which leads to arbitrary code execution...
CVE-2016-7790
Exponent CMS 2.3.9 suffers from a remote code execution vulnerability in /install/index.php. An attacker can upload 'php' file to the website through uploaderpaste.php, then overwrite /framework/conf/config.php, which leads to arbitrary code execution...
Remote code execution
Exponent CMS 2.3.9 suffers from a remote code execution vulnerability in /install/index.php. An attacker can upload 'php' file to the website through uploaderpaste.php, then overwrite /framework/conf/config.php, which leads to arbitrary code execution...
CVE-2016-7791
Exponent CMS 2.3.9 suffers from a remote code execution vulnerability in /install/index.php. An attacker can upload an evil 'exploit.tar.gz' file to the website, then extract it by visiting '/install/index.php?installsample=../../files/exploit', which leads to arbitrary code execution...
Remote code execution
Exponent CMS 2.3.9 suffers from a remote code execution vulnerability in /install/index.php. An attacker can upload an evil 'exploit.tar.gz' file to the website, then extract it by visiting '/install/index.php?installsample=../../files/exploit', which leads to arbitrary code execution...
CVE-2016-7790
Exponent CMS 2.3.9 suffers from a remote code execution vulnerability in /install/index.php. An attacker can upload 'php' file to the website through uploaderpaste.php, then overwrite /framework/conf/config.php, which leads to arbitrary code execution...
CVE-2016-7790
Exponent CMS 2.3.9 suffers from a remote code execution vulnerability in /install/index.php. An attacker can upload 'php' file to the website through uploaderpaste.php, then overwrite /framework/conf/config.php, which leads to arbitrary code execution...
CVE-2016-7791
Exponent CMS 2.3.9 suffers from a remote code execution vulnerability in /install/index.php. An attacker can upload an evil 'exploit.tar.gz' file to the website, then extract it by visiting '/install/index.php?installsample=../../files/exploit', which leads to arbitrary code execution...
CVE-2016-7791
Exponent CMS 2.3.9 is affected by CVE-2016-7791, a remote code execution vulnerability in /install/index.php. An attacker can upload a crafted exploit.tar.gz and trigger extraction via /install/index.php?install_sample=../../files/exploit, leading to arbitrary code execution. NVD lists CVSSv2 bas...
CVE-2016-7790
Exponent CMS 2.3.9 is affected by a remote code execution vulnerability in /install/index.php. An attacker can upload a PHP file via uploader_paste.php and then overwrite /framework/conf/config.php to achieve arbitrary code execution. This is enabled by the ability to place a crafted file on the ...
OIC Exponent CMS SQL Injection Vulnerability (CNVD-2016-11771)
OIC Exponent CMS is a free, open source modular content management system CMS based on PHP from the American OIC Group of companies. The system supports direct editing in the page, and provides user management, site configuration, content editing and other functions. A security vulnerability exis...
CVE-2016-9481
In framework/modules/core/controllers/expCommentController.php of Exponent CMS 2.4.0, contentid input is passed into showComments. The method showComments is defined in the expCommentControllercontroller with the parameter '$this-params'contentid'' used directly in SQL. Impact is a SQL injection...
CVE-2016-9481
In framework/modules/core/controllers/expCommentController.php of Exponent CMS 2.4.0, contentid input is passed into showComments. The method showComments is defined in the expCommentControllercontroller with the parameter '$this-params'contentid'' used directly in SQL. Impact is a SQL injection...
Sql injection
In framework/modules/core/controllers/expCommentController.php of Exponent CMS 2.4.0, contentid input is passed into showComments. The method showComments is defined in the expCommentControllercontroller with the parameter '$this-params'contentid'' used directly in SQL. Impact is a SQL injection...
CVE-2016-9481
In framework/modules/core/controllers/expCommentController.php of Exponent CMS 2.4.0, contentid input is passed into showComments. The method showComments is defined in the expCommentControllercontroller with the parameter '$this-params'contentid'' used directly in SQL. Impact is a SQL injection...
CVE-2016-9481
Exponent CMS 2.4.0 contains a SQL injection vulnerability in framework/modules/core/controllers/expCommentController.php. The content_id parameter from showComments is derived from $this->params['content_id'] and is used directly in SQL without proper sanitization, enabling arbitrary SQL execu...
Memory corruption
The mpipowm function in lib/mpi/mpi-pow.c in the Linux kernel through 4.8.11 does not ensure that memory is allocated for limb data, which allows local users to cause a denial of service stack memory corruption and panic via an addkey system call for an RSA key with a zero exponent...