|
Exponent CMS Image Upload Arbitrary Script Execution Vulnerability
Exponent CMS is prone to an arbitrary script execution vulnerability. This is due to a lack of proper sanitization of user-supplied input to the image upload portion of the application. An attacker can include remote script code and execute it in the context of an affected server. Versions 0.x are reported to be vulnerable; an upgrade to 0.94.6 is available. |
|
|
Privacy Statement |
