07 Fév 2017
CVE-2016-7400 - CVE Vulnerability
Multiple SQL injection vulnerabilities in Exponent CMS before 2.4.0 allow remote attackers to execute arbitrary SQL commands via the (1) id parameter in an activate_address address controller action, (2) title parameter in a show blog controller action, or (3) content_id parameter in a showComments expComment controller action. (CVSS:0.0) (Last Update:2017-02-07)
Vulnerability Details : Multiple SQL injection vulnerabilities in Exponent CMS before 2.4.0 allow remote attackers to execute arbitrary SQL commands via the (1) id parameter in an activate_address address controller action, (2) title parameter in a show blog controller action, or (3) content_id parameter in a showComments expComment controller action. Publish Date : 2017-02-07 Last Update Date : 2017-02-07 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2016-7400
- References For CVE-2016-7400
| |||||||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2016-7400There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information) |