Lucene search
K

4 matches found

Cvelist
Cvelist
added 2016/11/29 11:0 p.m.18 views

CVE-2016-9481

In framework/modules/core/controllers/expCommentController.php of Exponent CMS 2.4.0, contentid input is passed into showComments. The method showComments is defined in the expCommentControllercontroller with the parameter '$this-params'contentid'' used directly in SQL. Impact is a SQL injection...

9.9AI score0.01765EPSS
Exploits1References3
NVD
NVD
added 2016/11/04 10:59 a.m.15 views

CVE-2016-9184

In /framework/modules/core/controllers/expHTMLEditorController.php of Exponent CMS 2.4.0, untrusted input is used to construct a table name, and in the selectObject method in mysqli class, table names are wrapped with a character that common filters do not filter, allowing for SQL Injection. Impa...

7.5CVSS7.7AI score0.01763EPSS
Exploits0References2
NVD
NVD
added 2016/11/04 10:59 a.m.17 views

CVE-2016-9183

In /framework/modules/ecommerce/controllers/orderController.php of Exponent CMS 2.4.0, untrusted input is passed into selectObjectsBySql. The method selectObjectsBySql of class mysqlidatabase uses the injectProof method to prevent SQL injection, but this filter can be bypassed easily: it only...

7.5CVSS7.7AI score0.01827EPSS
Exploits0References2
Cvelist
Cvelist
added 2016/11/04 10:0 a.m.23 views

CVE-2016-9183

In /framework/modules/ecommerce/controllers/orderController.php of Exponent CMS 2.4.0, untrusted input is passed into selectObjectsBySql. The method selectObjectsBySql of class mysqlidatabase uses the injectProof method to prevent SQL injection, but this filter can be bypassed easily: it only...

7.9AI score0.01827EPSS
Exploits0References2
Rows per page
Query Builder