Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
ExponentcmsExponent Cms

59 matches found

CVE
CVEadded 2016/11/29 11:59 p.m.31 views

CVE-2016-9481

In framework/modules/core/controllers/expCommentController.php of Exponent CMS 2.4.0, content_id input is passed into showComments. The method showComments is defined in the expCommentControllercontroller with the parameter '$this->params['content_id']' used directly in SQL. Impact is a SQL inje...

9.8CVSS9.8AI score0.00409EPSS
CVE
CVEadded 2016/11/04 10:59 a.m.30 views

CVE-2016-9184

In /framework/modules/core/controllers/expHTMLEditorController.php of Exponent CMS 2.4.0, untrusted input is used to construct a table name, and in the selectObject method in mysqli class, table names are wrapped with a character that common filters do not filter, allowing for SQL Injection. Impact...

7.5CVSS8.1AI score0.00533EPSS
CVE
CVEadded 2016/11/11 10:59 p.m.30 views

CVE-2016-9282

SQL Injection in framework/modules/search/controllers/searchController.php in Exponent CMS v2.4.0 allows remote attackers to read database information via action=search&module=search with the search_string parameter.

7.5CVSS8.2AI score0.00264EPSS
CVE
CVEadded 2016/11/11 10:59 p.m.30 views

CVE-2016-9285

framework/modules/addressbook/controllers/addressController.php in Exponent CMS v2.4.0 allows remote attackers to read user information via a modified id number, as demonstrated by address/edit/id/1, related to an "addresses, countries, and regions" issue.

5.3CVSS6AI score0.00213EPSS
CVE
CVEadded 2016/11/11 11:59 p.m.30 views

CVE-2016-9288

In framework/modules/navigation/controllers/navigationController.php in Exponent CMS v2.4.0 or older, the parameter "target" of function "DragnDropReRank" is directly used without any filtration which caused SQL injection. The payload can be used like this: /navigation/DragnDropReRank/target/1.

9.8CVSS9.8AI score0.00251EPSS
CVE
CVEadded 2017/03/07 4:59 p.m.29 views

CVE-2016-7784

SQL injection vulnerability in the getSection function in framework/core/subsystems/expRouter.php in Exponent CMS 2.3.9 and earlier allows remote attackers to execute arbitrary SQL commands via the section parameter.

9.8CVSS10AI score0.00587EPSS
CVE
CVEadded 2016/11/11 10:59 p.m.28 views

CVE-2016-9284

getUsersByJSON in framework/modules/users/controllers/usersController.php in Exponent CMS v2.4.0 allows remote attackers to read user information via users/getUsersByJSON/sort/ and a trailing string.

5.3CVSS6AI score0.00213EPSS
CVE
CVEadded 2016/11/11 11:59 a.m.27 views

CVE-2016-9272

A Blind SQL Injection Vulnerability in Exponent CMS through 2.4.0, with the rerank array parameter, can lead to site database information disclosure and denial of service.

9.1CVSS9.1AI score0.00335EPSS
CVE
CVEadded 2016/11/07 11:59 a.m.24 views

CVE-2016-9242

Multiple SQL injection vulnerabilities in the update method in framework/modules/core/controllers/expRatingController.php in Exponent CMS 2.4.0 allow remote authenticated users to execute arbitrary SQL commands via the (1) content_type or (2) subtype parameter.

8.8CVSS9.4AI score0.00433EPSS
Total number of security vulnerabilities59