SQL Injection in Exponent CMS by Exponent
CVE-2017-7991

9.8CRITICAL

Key Information:

Vendor

Exponentcms

Status
Exponent Cms
Vendor
CVE Published:
22 April 2017

What is CVE-2017-7991?

Exponent CMS versions up to 2.4.1 are susceptible to SQL injection through the 'apikey' parameter, which is base64 serialized in the API function located within framework/modules/eaas/controllers/eaasController.php. This vulnerability allows attackers to manipulate database queries, potentially compromising sensitive data. It underscores the importance of validation and sanitization of user inputs in web applications to prevent unauthorized database access.

References

https://packetstormsecurity.com/files/142258/Exponent-CMS...
x_refsource_MISC
http://seclists.org/fulldisclosure/2017/Apr/78
x_refsource_MISC
https://gist.github.com/404notf0und/ab59234d71fbf35b4926f...
x_refsource_MISC

CVSS V3.1

Score:
9.8
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.