exponent exponent cms 0.94 vulnerabilities and exploits

(subscribe to this query)

Unspecified vulnerability in Exponent CMS prior to 0.96.5 RC 1 has unknown impact and remote attack vectors related to variables that are not "typecasted."

Exponent Exponent Cms 0.96.4 Exponent Exponent Cms 0.95 Exponent Exponent Cms 0.96.1 Exponent Exponent Cms 0.94

Unspecified vulnerability in the image module in Exponent CMS prior to 0.96.5 RC 1 allows remote malicious users to execute arbitrary code via unknown vectors involving "parsed PHP."

Exponent Exponent Cms 0.96.4 Exponent Exponent Cms 0.95 Exponent Exponent Cms 0.96.1 Exponent Exponent Cms 0.94

Unspecified vulnerability in the image module in Exponent CMS prior to 0.96.5 RC 1 allows "directory disclosure" with unknown attack vectors.

Exponent Exponent Cms 0.96.4 Exponent Exponent Cms 0.95 Exponent Exponent Cms 0.96.1 Exponent Exponent Cms 0.94

Unspecified vulnerability in the banner module in Exponent CMS prior to 0.96.5 RC 1 allows "php injection" via unknown attack vectors.

Exponent Exponent Cms 0.96.4 Exponent Exponent Cms 0.95 Exponent Exponent Cms 0.96.1 Exponent Exponent Cms 0.94

Multiple cross-site scripting (XSS) vulnerabilities in Exponent CMS 0.96.6 Alpha and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) url parameter to (a) magpie_debug.php and (b) magpie_simple.php in external/magpierss/scripts/, t...

Oicgroup Exponent Cms 0.96.4 Oicgroup Exponent Cms Oicgroup Exponent Cms 0.95 Oicgroup Exponent Cms 0.94 Oicgroup Exponent Cms 0.96.3 Oicgroup Exponent Cms 0.96.5 Oicgroup Exponent Cms 0.96.1

2 EDB exploits

Multiple cross-site scripting (XSS) vulnerabilities in the user account creation feature in Exponent CMS 0.96.6-GA20071003 and previous versions, when the Allow Registration? configuration option is enabled, allow remote malicious users to inject arbitrary web script or HTML via ...

Oicgroup Exponent Cms 0.96.6 Oicgroup Exponent Cms 0.96.4 Oicgroup Exponent Cms 0.95 Oicgroup Exponent Cms 0.94 Oicgroup Exponent Cms 0.96.3 Oicgroup Exponent Cms Oicgroup Exponent Cms 0.96.5 Oicgroup Exponent Cms 0.96.1

Exponent CMS 0.96.3 and later versions performs a chmod on uploaded files to give them execute permissions, which allows remote malicious users to execute arbitrary code.

Exponent Exponent 0.94 Exponent Exponent 0.96.3 Exponent Exponent 0.96.1 Exponent Exponent 0.95 Exponent Exponent 0.96.4

Exponent CMS 0.96.3 and later versions does not properly restrict the types of uploaded files, which allows remote malicious users to upload and execute PHP files.

Exponent Exponent 0.94 Exponent Exponent 0.96.3 Exponent Exponent 0.96.1 Exponent Exponent 0.95 Exponent Exponent 0.96.4

SQL injection vulnerability in the navigation module (navigationmodule) in Exponent CMS 0.96.3 and later versions allows remote malicious users to execute arbitrary SQL commands via the parent parameter.

Exponent Exponent 0.94 Exponent Exponent 0.96.3 Exponent Exponent 0.96.1 Exponent Exponent 0.95 Exponent Exponent 0.96.4

The image gallery (imagegallery) component in Exponent CMS 0.96.3 and later versions does not properly check the MIME type of uploaded files, with unknown impact from the preview icon, possibly involving injection of HTML.

Exponent Exponent 0.94 Exponent Exponent 0.96.3 Exponent Exponent 0.96.1 Exponent Exponent 0.95 Exponent Exponent 0.96.4

1 2 NEXT »

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook