CVE-2016-8899

Exponent CMS version 2.3.9 suffers from a Object Injection vulnerability in framework/modules/core/controllers/expCatController.php related to change_cats.
Configurations

Configuration 1 (hide)

cpe:2.3:a:exponentcms:exponent_cms:2.3.9:*:*:*:*:*:*:*

History

No history.

Information

Published : 2019-05-23 19:29

Updated : 2024-02-28 17:08


NVD link : CVE-2016-8899

Mitre link : CVE-2016-8899

CVE.ORG link : CVE-2016-8899


JSON object : View

Products Affected

exponentcms

  • exponent_cms
CWE
CWE-74

Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')