In Exponent CMS before 2.4.1 Patch #6, certain admin users can elevate their privileges.
References
Link | Resource |
---|---|
http://www.exponentcms.org/news/patch-6-released-for-v2-4-1-to-fix-a-few-big-issues | Vendor Advisory |
https://github.com/exponentcms/exponent-cms/releases/tag/v2.4.1patch6 | Third Party Advisory |
http://www.exponentcms.org/news/patch-6-released-for-v2-4-1-to-fix-a-few-big-issues | Vendor Advisory |
https://github.com/exponentcms/exponent-cms/releases/tag/v2.4.1patch6 | Third Party Advisory |
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 03:19
Type | Values Removed | Values Added |
---|---|---|
References | () http://www.exponentcms.org/news/patch-6-released-for-v2-4-1-to-fix-a-few-big-issues - Vendor Advisory | |
References | () https://github.com/exponentcms/exponent-cms/releases/tag/v2.4.1patch6 - Third Party Advisory |
Information
Published : 2018-03-04 02:29
Updated : 2024-11-21 03:19
NVD link : CVE-2017-18213
Mitre link : CVE-2017-18213
CVE.ORG link : CVE-2017-18213
JSON object : View
Products Affected
exponentcms
- exponent_cms
CWE