[CLOSE] OSVDB ID : 20784 - Disclosed: 2005-06-29

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 21022 - Disclosed: 2005-11-19

Description:

Exponent CMS contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'forms' created by the 'Form Generator'. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 38842 - Disclosed: 2007-04-25

Description:

(Description Provided by CVE) : Exponent CMS 0.96.6 Alpha and earlier allows remote attackers to obtain path information via a direct request for (1) sdk/blanks/formcontrol.php and (2) sdk/blanks/file_modules.php.

[CLOSE] OSVDB ID : 20783 - Disclosed: 2005-06-09

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 72242 - Disclosed: 2011-05-04

Description:

Exponent CMS contains a flaw that allows a remote attacker to traverse outside of a restricted path. The issue is due to the framework/modules/pixidou/download.php script not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../) supplied via the 'file' parameter. This directory traversal attack would allow the attacker to access arbitrary files.

[CLOSE] OSVDB ID : 35051 - Disclosed: 2007-04-20

Description:

(Description Provided by CVE) : Directory traversal vulnerability in iconspopup.php in Exponent CMS 0.96.6 Alpha and earlier allows remote attackers to obtain sensitive information via a .. (dot dot) in the icodir parameter.

[CLOSE] OSVDB ID : 20790 - Disclosed: 2005-08-31

Description:

Exponent CMS contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the mime type checking during uploads upon submission to the image gallery script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 21025 - Disclosed: 2005-11-19

Description:

Exponent contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the mime type on uploads upon submission to the 'Image Gallery' script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 21024 - Disclosed: 2005-11-19

Description:

(Description Provided by CVE) : Exponent CMS 0.96.3 and later versions includes the full installation path in the base parameter to thumb.php, which allows remote attackers to obtain sensitive information. NOTE: this might be resultant from an absolute path traversal vulnerability.

[CLOSE] OSVDB ID : 20793 - Disclosed: 2005-11-08

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 76989 - Disclosed: 2010-12-08

Description:

Exponent CMS contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the index.php script not properly sanitizing user-supplied input to the 'id' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 13188 - Disclosed: 2005-01-25

Description:

Exponent CMS contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'module' variable upon submission to the 'index.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 93447 - Disclosed: 2013-05-15

Description:

Exponent CMS contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the index.php script not properly sanitizing user-supplied input to the 'src' and 'username' parameters. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 81327 - Disclosed: 2012-04-23

Description:

Exponent CMS contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'tag' and 'src' parameters upon submission to the index.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 20796 - Disclosed: 2005-11-11

Description:

Exponent CMS contains a flaw that may allow a remote attacker to carry out an SQL injection attack. The issue is due to the 'index.php' script not properly sanitizing user-supplied input to the 'section' variable. This may allow a remote attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 81326 - Disclosed: 2012-04-23

Description:

Exponent CMS contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the index.php script not properly sanitizing user-supplied input to the 'section' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 29024 - Disclosed: 2006-09-20

Description:

Exponent CMS contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the index.php script not properly sanitizing user input supplied to the 'view' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 21028 - Disclosed: 2005-11-19

Description:

Exponent CMS contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'URL' parameter upon submission to the installer. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 35640 - Disclosed: 2007-04-27

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in Exponent CMS 0.96.6 Alpha and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) url parameter to (a) magpie_debug.php and (b) magpie_simple.php in external/magpierss/scripts/, the (2) rss_url parameter to (c) magpie_slashbox.php in external/magpierss/scripts/, and the (3) body parameter to the (d) weblogmodule (aka Weblog Comments) module.

[CLOSE] OSVDB ID : 35641 - Disclosed: 2007-04-27

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in Exponent CMS 0.96.6 Alpha and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) url parameter to (a) magpie_debug.php and (b) magpie_simple.php in external/magpierss/scripts/, the (2) rss_url parameter to (c) magpie_slashbox.php in external/magpierss/scripts/, and the (3) body parameter to the (d) weblogmodule (aka Weblog Comments) module.

[CLOSE] OSVDB ID : 35642 - Disclosed: 2007-04-27

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in Exponent CMS 0.96.6 Alpha and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) url parameter to (a) magpie_debug.php and (b) magpie_simple.php in external/magpierss/scripts/, the (2) rss_url parameter to (c) magpie_slashbox.php in external/magpierss/scripts/, and the (3) body parameter to the (d) weblogmodule (aka Weblog Comments) module.

[CLOSE] OSVDB ID : 13190 - Disclosed: 2005-01-25

Description:

Exponent CMS contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'module' variable upon submission to the 'mod.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 76990 - Disclosed: 2010-10-14

Description:

Exponent CMS contains a flaw that allows a remote attacker to traverse outside of a restricted path. The issue is due to the mod_preview.php script not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../) supplied via the 'module' parameter. This directory traversal attack would allow the attacker to access arbitrary files.

[CLOSE] OSVDB ID : 76991 - Disclosed: 2010-10-14

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 76988 - Disclosed: 2010-07-08

Description:

Exponent CMS contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'u' parameter upon submission to the modules/slideshowmodule/slideshow.js.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 13189 - Disclosed: 2005-01-25

Description:

(Description Provided by CVE) : Exponent 0.95 allows remote attackers to obtain sensitive information via a direct HTTP request to (1) search.info.php, (2) permissions.info.php, (3) security.info.php, (4) formcontrol.php, or (5) file_modules.php, which reveals the path in an error message because the pathos_core_version variable is undefined.

[CLOSE] OSVDB ID : 20786 - Disclosed: 2005-06-30

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 21023 - Disclosed: 2005-11-19

Description:

Exponent CMS contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the Navigation Module not properly sanitizing user-supplied input to the 'parent' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 20779 - Disclosed: 2005-02-04

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 69692 - Disclosed: 2010-12-06

Description:

Exponent CMS contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the podcast.php script not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../) supplied to the 'module' parameter. This may allow an attacker to include a file from the targeted host that contains arbitrary commands or code that will be executed by the vulnerable script. Such attacks are limited due to the script only calling files already on the target host. In addition, this flaw can potentially be used to disclose the contents of any file on the system accessible by the web server.