mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-28 01:04:30 +00:00
789 B
789 B
CVE-2016-7781
Description
SQL injection vulnerability in framework/modules/blog/controllers/blogController.php in Exponent CMS 2.3.9 and earlier allows remote attackers to execute arbitrary SQL commands via the author parameter.
POC
Reference
- http://packetstormsecurity.com/files/139484/Exponent-CMS-2.3.9-SQL-Injection.html
- http://packetstormsecurity.com/files/139484/Exponent-CMS-2.3.9-SQL-Injection.html
Github
No PoCs found on GitHub currently.