| Max CVSS | 7.5 | Min CVSS | 5.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2016-9284 | 5.0 |
getUsersByJSON in framework/modules/users/controllers/usersController.php in Exponent CMS v2.4.0 allows remote attackers to read user information via users/getUsersByJSON/sort/ and a trailing string.
|
28-07-2017 - 01:29 | 11-11-2016 - 22:59 | |
| CVE-2016-9285 | 5.0 |
framework/modules/addressbook/controllers/addressController.php in Exponent CMS v2.4.0 allows remote attackers to read user information via a modified id number, as demonstrated by address/edit/id/1, related to an "addresses, countries, and regions"
|
28-07-2017 - 01:29 | 11-11-2016 - 22:59 | |
| CVE-2016-9283 | 5.0 |
SQL Injection in framework/core/subsystems/expRouter.php in Exponent CMS v2.4.0 allows remote attackers to read database information via address/addContentToSearch/id/ and a trailing string, related to a "sef URL" issue.
|
28-07-2017 - 01:29 | 11-11-2016 - 22:59 | |
| CVE-2016-9286 | 5.0 |
framework/modules/users/controllers/usersController.php in Exponent CMS v2.4.0patch1 does not properly restrict access to user records, which allows remote attackers to read address information, as demonstrated by an address/show/id/1 URI.
|
28-07-2017 - 01:29 | 11-11-2016 - 22:59 | |
| CVE-2016-9282 | 5.0 |
SQL Injection in framework/modules/search/controllers/searchController.php in Exponent CMS v2.4.0 allows remote attackers to read database information via action=search&module=search with the search_string parameter.
|
28-07-2017 - 01:29 | 11-11-2016 - 22:59 | |
| CVE-2016-9288 | 7.5 |
In framework/modules/navigation/controllers/navigationController.php in Exponent CMS v2.4.0 or older, the parameter "target" of function "DragnDropReRank" is directly used without any filtration which caused SQL injection. The payload can be used lik
|
28-07-2017 - 01:29 | 11-11-2016 - 23:59 |