CVE-2005-3762

SQL injection vulnerability in the navigation module (navigationmodule) in Exponent CMS 0.96.3 and later versions allows remote attackers to execute arbitrary SQL commands via the parent parameter.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:exponent:exponent:0.94:*:*:*:*:*:*:*
cpe:2.3:a:exponent:exponent:0.95:*:*:*:*:*:*:*
cpe:2.3:a:exponent:exponent:0.96.1:*:*:*:*:*:*:*
cpe:2.3:a:exponent:exponent:0.96.3:*:*:*:*:*:*:*
cpe:2.3:a:exponent:exponent:0.96.4:*:*:*:*:*:*:*

History

21 Nov 2024, 00:02

Type Values Removed Values Added
References () http://secunia.com/advisories/17505 - () http://secunia.com/advisories/17505 -
References () http://secunia.com/advisories/17655 - Vendor Advisory () http://secunia.com/advisories/17655 - Vendor Advisory
References () http://www.osvdb.org/21023 - () http://www.osvdb.org/21023 -
References () http://www.securityfocus.com/archive/1/417218 - Exploit, Vendor Advisory () http://www.securityfocus.com/archive/1/417218 - Exploit, Vendor Advisory
References () http://www.securityfocus.com/bid/15389 - () http://www.securityfocus.com/bid/15389 -
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/23109 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/23109 -

Information

Published : 2005-11-22 23:03

Updated : 2024-11-21 00:02


NVD link : CVE-2005-3762

Mitre link : CVE-2005-3762

CVE.ORG link : CVE-2005-3762


JSON object : View

Products Affected

exponent

  • exponent