Lucene search
K

6 matches found

CVE
CVE
added 2014/02/11 5:0 p.m.106 views

CVE-2013-3294

CVE-2013-3294 and CVE-2013-3295 affect Exponent CMS, with multiple vulnerabilities in 2.2.0 beta3 and earlier: CVE-2013-3294 is a SQL Injection in index.php via src and username parameters, exploitable remotely; CVE-2013-3295 is a PHP File Inclusion via install/popup.php?page parameter, enabling ...

7.5CVSS8.5AI score0.02452EPSS
Exploits4References5Affected Software1
securityvulns
securityvulns
added 2013/07/15 12:0 a.m.68 views

Multiple Vulnerabilities in Exponent CMS

Advisory ID: HTB23154 Product: Exponent CMS Vendor: Online Innovative Creations Vulnerable Versions: 2.2.0 beta 3 and probably prior Tested Version: 2.2.0 beta 3 Vendor Notification: April 24, 2013 Vendor Patch: May 3, 2013 Public Disclosure: May 15, 2013 Vulnerability Type: SQL Injection CWE-89,...

7.5CVSS8.1AI score0.02452EPSS
Exploits5
exploitpack
exploitpack
added 2013/05/17 12:0 a.m.60 views

Exponent CMS 2.2.0 Beta 3 - Multiple Vulnerabilities

Exponent CMS 2.2.0 Beta 3 - Multiple Vulnerabilities Advisory ID: HTB23154 Product: Exponent CMS Vendor: Online Innovative Creations Vulnerable Versions: 2.2.0 beta 3 and probably prior Tested Version: 2.2.0 beta 3 Vendor Notification: April 24, 2013 Vendor Patch: May 3, 2013 Public Disclosure: M...

7.5CVSS0.3AI score0.02452EPSS
Exploits5
Exploit DB
Exploit DB
added 2013/05/17 12:0 a.m.71 views

Exponent CMS 2.2.0 Beta 3 - Multiple Vulnerabilities

Advisory ID: HTB23154 Product: Exponent CMS Vendor: Online Innovative Creations Vulnerable Versions: 2.2.0 beta 3 and probably prior Tested Version: 2.2.0 beta 3 Vendor Notification: April 24, 2013 Vendor Patch: May 3, 2013 Public Disclosure: May 15, 2013 Vulnerability Type: SQL Injection CWE-89,...

7.5CVSS6.4AI score0.02452EPSS
Exploits5
0day.today
0day.today
added 2013/05/16 12:0 a.m.87 views

Exponent CMS 2.2.0 Beta 3 LFI / SQL Injection Vulnerabilities

Exponent CMS version 2.2.0 beta 3 suffers from local file inclusion and remote SQL injection vulnerabilities. Product: Exponent CMS Vendor: Online Innovative Creations Vulnerable Versions: 2.2.0 beta 3 and probably prior Tested Version: 2.2.0 beta 3 Vendor Notification: April 24, 2013 Vendor Patc...

7.5CVSS0.1AI score0.02452EPSS
Exploits5
Packet Storm
Packet Storm
added 2013/05/15 12:0 a.m.79 views

Exponent CMS 2.2.0 Beta 3 LFI / SQL Injection

Advisory ID: HTB23154 Product: Exponent CMS Vendor: Online Innovative Creations Vulnerable Versions: 2.2.0 beta 3 and probably prior Tested Version: 2.2.0 beta 3 Vendor Notification: April 24, 2013 Vendor Patch: May 3, 2013 Public Disclosure: May 15, 2013 Vulnerability Type: SQL Injection CWE-89,...

7.5CVSS0.2AI score0.02452EPSS
Exploits5
Rows per page
Query Builder