mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-28 09:12:08 +00:00
768 B
768 B
CVE-2016-7782
Description
SQL injection vulnerability in framework/core/models/expConfig.php in Exponent CMS 2.3.9 and earlier allows remote attackers to execute arbitrary SQL commands via the src parameter.
POC
Reference
- http://packetstormsecurity.com/files/139484/Exponent-CMS-2.3.9-SQL-Injection.html
- http://packetstormsecurity.com/files/139484/Exponent-CMS-2.3.9-SQL-Injection.html
Github
No PoCs found on GitHub currently.