4 matches found
CVE-2016-9481
In framework/modules/core/controllers/expCommentController.php of Exponent CMS 2.4.0, contentid input is passed into showComments. The method showComments is defined in the expCommentControllercontroller with the parameter '$this-params'contentid'' used directly in SQL. Impact is a SQL injection...
CVE-2016-9184
In /framework/modules/core/controllers/expHTMLEditorController.php of Exponent CMS 2.4.0, untrusted input is used to construct a table name, and in the selectObject method in mysqli class, table names are wrapped with a character that common filters do not filter, allowing for SQL Injection. Impa...
CVE-2016-9183
In /framework/modules/ecommerce/controllers/orderController.php of Exponent CMS 2.4.0, untrusted input is passed into selectObjectsBySql. The method selectObjectsBySql of class mysqlidatabase uses the injectProof method to prevent SQL injection, but this filter can be bypassed easily: it only...
CVE-2016-9183
In /framework/modules/ecommerce/controllers/orderController.php of Exponent CMS 2.4.0, untrusted input is passed into selectObjectsBySql. The method selectObjectsBySql of class mysqlidatabase uses the injectProof method to prevent SQL injection, but this filter can be bypassed easily: it only...