2 matches found
CVE-2015-8667
CVE-2015-8667 affects Exponent CMS prior to 2.3.5. The vulnerability is a Cross-site Scripting (XSS) in the Reset Your Password module that allows injection of arbitrary script/HTML via the Username/Email field. Affected component: Reset Your Password workflow; root cause: insufficient sanitizati...
Exponent CMS 2.3.5 Cross Site Scripting
CVE-2015-8667 - Exponent CMS 2.3.5 Multiple Cross Site Scripting Vulnerabilities Product : Exponent CMS CVE : CVE-2015-8667 Author : Sachin Wagh Affected Version : Exponent CMS 2.3.5 Fixed Version: Exponent CMS 2.3.7 ============================================================================...