cbcvebase.

Exponentcms Exponent Cms vulnerabilities

60 known vulnerabilities affecting exponentcms/exponent_cms.

Total CVEs
60
CISA KEV
0
Public exploits
5
Exploited in wild
0
Severity breakdown
CRITICAL33HIGH14MEDIUM13

Vulnerabilities

Page 1 of 3
CVE-2016-7400P2CRITICALCVSS 9.8PoC≤ 2.3.92017-02-07
CVE-2016-7400 [CRITICAL] CWE-89 CVE-2016-7400: Multiple SQL injection vulnerabilities in Exponent CMS before 2.4.0 allow remote attackers to execut Multiple SQL injection vulnerabilities in Exponent CMS before 2.4.0 allow remote attackers to execute arbitrary SQL commands via the (1) id parameter in an activate_address address controller action, (2) title parameter in a show blog controller action, or (3) content_id parameter in a showComments expComment controller action.
nvd
CVE-2013-3294P3HIGHCVSS 7.5PoC≤ 2.2.0v0.97.0+17 more2014-02-11
CVE-2013-3294 [HIGH] CWE-89 CVE-2013-3294: Multiple SQL injection vulnerabilities in Exponent CMS before 2.2.0 release candidate 1 allow remote Multiple SQL injection vulnerabilities in Exponent CMS before 2.2.0 release candidate 1 allow remote attackers to execute arbitrary SQL commands via the (1) src or (2) username parameter to index.php.
nvd
CVE-2013-3295P3HIGHCVSS 7.5PoC≤ 2.2.02014-12-30
CVE-2013-3295 [HIGH] CWE-22 CVE-2013-3295: Directory traversal vulnerability in install/popup.php in Exponent CMS before 2.2.0 RC1 allows remot Directory traversal vulnerability in install/popup.php in Exponent CMS before 2.2.0 RC1 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the page parameter.
nvd
CVE-2016-2242P3CRITICALCVSS 9.8v2.0.0v2.0.1+25 more2017-01-23
CVE-2016-2242 [CRITICAL] CWE-94 CVE-2016-2242: Exponent CMS 2.x before 2.3.7 Patch 3 allows remote attackers to execute arbitrary code via the sc p Exponent CMS 2.x before 2.3.7 Patch 3 allows remote attackers to execute arbitrary code via the sc parameter to install/index.php.
nvd
CVE-2016-7565P3CRITICALCVSS 9.8v2.3.92017-02-13
CVE-2016-7565 [CRITICAL] CWE-284 CVE-2016-7565: install/index.php in Exponent CMS 2.3.9 allows remote attackers to execute arbitrary commands via sh install/index.php in Exponent CMS 2.3.9 allows remote attackers to execute arbitrary commands via shell metacharacters in the sc array parameter.
nvd
CVE-2016-9020P3CRITICALCVSS 9.8≤ 2.3.92017-03-07
CVE-2016-9020 [CRITICAL] CWE-89 CVE-2016-9020: SQL injection vulnerability in framework/modules/help/controllers/helpController.php in Exponent CMS SQL injection vulnerability in framework/modules/help/controllers/helpController.php in Exponent CMS 2.3.9 and earlier allows remote attackers to execute arbitrary SQL commands via the version parameter.
nvd
CVE-2016-7780P3CRITICALCVSS 9.8≤ 2.3.92017-03-07
CVE-2016-7780 [CRITICAL] CWE-89 CVE-2016-7780: SQL injection vulnerability in cron/find_help.php in Exponent CMS 2.3.9 and earlier allows remote at SQL injection vulnerability in cron/find_help.php in Exponent CMS 2.3.9 and earlier allows remote attackers to execute arbitrary SQL commands via the version parameter.
nvd
CVE-2016-7791P3CRITICALCVSS 9.8v2.3.92017-01-12
CVE-2016-7791 [CRITICAL] CWE-20 CVE-2016-7791: Exponent CMS 2.3.9 suffers from a remote code execution vulnerability in /install/index.php. An atta Exponent CMS 2.3.9 suffers from a remote code execution vulnerability in /install/index.php. An attacker can upload an evil 'exploit.tar.gz' file to the website, then extract it by visiting '/install/index.php?install_sample=../../files/exploit', which leads to arbitrary code execution.
nvd
CVE-2016-7790P3CRITICALCVSS 9.8v2.3.92017-01-12
CVE-2016-7790 [CRITICAL] CWE-20 CVE-2016-7790: Exponent CMS 2.3.9 suffers from a remote code execution vulnerability in /install/index.php. An atta Exponent CMS 2.3.9 suffers from a remote code execution vulnerability in /install/index.php. An attacker can upload 'php' file to the website through uploader_paste.php, then overwrite /framework/conf/config.php, which leads to arbitrary code execution.
nvd
CVE-2016-9019P3CRITICALCVSS 9.8≤ 2.3.92017-03-07
CVE-2016-9019 [CRITICAL] CWE-89 CVE-2016-9019: SQL injection vulnerability in the activate_address function in framework/modules/addressbook/contro SQL injection vulnerability in the activate_address function in framework/modules/addressbook/controllers/addressController.php in Exponent CMS 2.3.9 and earlier allows remote attackers to execute arbitrary SQL commands via the is_what parameter.
nvd
CVE-2016-7781P3CRITICALCVSS 9.8≤ 2.3.92017-03-07
CVE-2016-7781 [CRITICAL] CWE-89 CVE-2016-7781: SQL injection vulnerability in framework/modules/blog/controllers/blogController.php in Exponent CMS SQL injection vulnerability in framework/modules/blog/controllers/blogController.php in Exponent CMS 2.3.9 and earlier allows remote attackers to execute arbitrary SQL commands via the author parameter.
nvd
CVE-2016-7782P3CRITICALCVSS 9.8≤ 2.3.92017-03-07
CVE-2016-7782 [CRITICAL] CWE-89 CVE-2016-7782: SQL injection vulnerability in framework/core/models/expConfig.php in Exponent CMS 2.3.9 and earlier SQL injection vulnerability in framework/core/models/expConfig.php in Exponent CMS 2.3.9 and earlier allows remote attackers to execute arbitrary SQL commands via the src parameter.
nvd
CVE-2016-7788P3CRITICALCVSS 9.8≤ 2.3.92017-03-07
CVE-2016-7788 [CRITICAL] CWE-89 CVE-2016-7788: SQL injection vulnerability in framework/modules/users/models/user.php in Exponent CMS 2.3.9 and ear SQL injection vulnerability in framework/modules/users/models/user.php in Exponent CMS 2.3.9 and earlier allows remote attackers to execute arbitrary SQL commands via the username parameter.
nvd
CVE-2016-7783P3CRITICALCVSS 9.8≤ 2.3.92017-03-07
CVE-2016-7783 [CRITICAL] CWE-89 CVE-2016-7783: SQL injection vulnerability in framework/core/models/expRecord.php in Exponent CMS 2.3.9 and earlier SQL injection vulnerability in framework/core/models/expRecord.php in Exponent CMS 2.3.9 and earlier allows remote attackers to execute arbitrary SQL commands via the title parameter.
nvd
CVE-2016-7789P3CRITICALCVSS 9.8≤ 2.3.92017-03-07
CVE-2016-7789 [CRITICAL] CWE-89 CVE-2016-7789: SQL injection vulnerability in framework/core/models/expConfig.php in Exponent CMS 2.3.9 and earlier SQL injection vulnerability in framework/core/models/expConfig.php in Exponent CMS 2.3.9 and earlier allows remote attackers to execute arbitrary SQL commands via the apikey parameter.
nvd
CVE-2016-9087P3CRITICALCVSS 9.8≤ 2.3.92017-03-07
CVE-2016-9087 [CRITICAL] CWE-89 CVE-2016-9087: SQL injection vulnerability in framework/modules/filedownloads/controllers/filedownloadController.ph SQL injection vulnerability in framework/modules/filedownloads/controllers/filedownloadController.php in Exponent CMS 2.3.9 and earlier allows remote attackers to execute arbitrary SQL commands via the fileid parameter.
nvd
CVE-2016-7095P3CRITICALCVSS 9.8≤ 2.3.82016-11-03
CVE-2016-7095 [CRITICAL] CWE-434 CVE-2016-7095: Exponent CMS before 2.3.9 is vulnerable to an attacker uploading a malicious script file using redir Exponent CMS before 2.3.9 is vulnerable to an attacker uploading a malicious script file using redirection to place the script in an unprotected folder, one allowing script execution.
nvd
CVE-2016-7784P3CRITICALCVSS 9.8≤ 2.3.92017-03-07
CVE-2016-7784 [CRITICAL] CWE-89 CVE-2016-7784: SQL injection vulnerability in the getSection function in framework/core/subsystems/expRouter.php in SQL injection vulnerability in the getSection function in framework/core/subsystems/expRouter.php in Exponent CMS 2.3.9 and earlier allows remote attackers to execute arbitrary SQL commands via the section parameter.
nvd
CVE-2017-7991P3CRITICALCVSS 9.8≤ 2.4.12017-04-22
CVE-2017-7991 [CRITICAL] CWE-89 CVE-2017-7991: Exponent CMS 2.4.1 and earlier has SQL injection via a base64 serialized API key (apikey parameter) Exponent CMS 2.4.1 and earlier has SQL injection via a base64 serialized API key (apikey parameter) in the api function of framework/modules/eaas/controllers/eaasController.php.
nvd
CVE-2016-9242P3HIGHCVSS 8.8v2.4.02016-11-07
CVE-2016-9242 [HIGH] CWE-89 CVE-2016-9242: Multiple SQL injection vulnerabilities in the update method in framework/modules/core/controllers/ex Multiple SQL injection vulnerabilities in the update method in framework/modules/core/controllers/expRatingController.php in Exponent CMS 2.4.0 allow remote authenticated users to execute arbitrary SQL commands via the (1) content_type or (2) subtype parameter.
nvd
Exponentcms Exponent Cms vulnerabilities | cvebase