11 Nov 2016
CVE-2016-9285 Vulnerability
framework/modules/addressbook/controllers/addressController.php in Exponent CMS v2.4.0 allows remote attackers to read user information via a modified id number, as demonstrated by address/edit/id/1, related to an "addresses, countries, and regions" issue. (CVSS:5.0) (Last Update:2016-11-14)
Vulnerability Details : framework/modules/addressbook/controllers/addressController.php in Exponent CMS v2.4.0 allows remote attackers to read user information via a modified id number, as demonstrated by address/edit/id/1, related to an "addresses, countries, and regions" issue. Publish Date : 2016-11-11 Last Update Date : 2016-11-14 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2016-9285
- Number Of Affected Versions By Product
- References For CVE-2016-9285
| |||||||||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2016-9285There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information) |