CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-7452

The Pixidou Image Editor in Exponent CMS prior to v2.3.9 patch 2 could be used to upload a malicious file to any folder on the site via a cpi directory traversal.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.011

EPSS Ranking 76.6%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

Products affected by CVE-2016-7452

Exponentcms » Exponent Cms » Version: 0.97.0

cpe:2.3:a:exponentcms:exponent_cms:0.97.0
Exponentcms » Exponent Cms » Version: 0.98.0

cpe:2.3:a:exponentcms:exponent_cms:0.98.0
Exponentcms » Exponent Cms » Version: 0.99.0

cpe:2.3:a:exponentcms:exponent_cms:0.99.0
Exponentcms » Exponent Cms » Version: 2.0.0

cpe:2.3:a:exponentcms:exponent_cms:2.0.0
Exponentcms » Exponent Cms » Version: 2.0.1

cpe:2.3:a:exponentcms:exponent_cms:2.0.1
Exponentcms » Exponent Cms » Version: 2.0.2

cpe:2.3:a:exponentcms:exponent_cms:2.0.2
Exponentcms » Exponent Cms » Version: 2.0.3

cpe:2.3:a:exponentcms:exponent_cms:2.0.3
Exponentcms » Exponent Cms » Version: 2.0.4

cpe:2.3:a:exponentcms:exponent_cms:2.0.4
Exponentcms » Exponent Cms » Version: 2.0.5

cpe:2.3:a:exponentcms:exponent_cms:2.0.5
Exponentcms » Exponent Cms » Version: 2.0.6

cpe:2.3:a:exponentcms:exponent_cms:2.0.6
Exponentcms » Exponent Cms » Version: 2.0.7

cpe:2.3:a:exponentcms:exponent_cms:2.0.7
Exponentcms » Exponent Cms » Version: 2.0.8

cpe:2.3:a:exponentcms:exponent_cms:2.0.8
Exponentcms » Exponent Cms » Version: 2.0.9

cpe:2.3:a:exponentcms:exponent_cms:2.0.9
Exponentcms » Exponent Cms » Version: 2.1.0

cpe:2.3:a:exponentcms:exponent_cms:2.1.0
Exponentcms » Exponent Cms » Version: 2.1.1

cpe:2.3:a:exponentcms:exponent_cms:2.1.1
Exponentcms » Exponent Cms » Version: 2.1.2

cpe:2.3:a:exponentcms:exponent_cms:2.1.2
Exponentcms » Exponent Cms » Version: 2.1.3

cpe:2.3:a:exponentcms:exponent_cms:2.1.3
Exponentcms » Exponent Cms » Version: 2.1.4

cpe:2.3:a:exponentcms:exponent_cms:2.1.4
Exponentcms » Exponent Cms » Version: 2.1.5

cpe:2.3:a:exponentcms:exponent_cms:2.1.5
Exponentcms » Exponent Cms » Version: 2.2.0

cpe:2.3:a:exponentcms:exponent_cms:2.2.0
Exponentcms » Exponent Cms » Version: 2.2.1

cpe:2.3:a:exponentcms:exponent_cms:2.2.1
Exponentcms » Exponent Cms » Version: 2.2.2

cpe:2.3:a:exponentcms:exponent_cms:2.2.2
Exponentcms » Exponent Cms » Version: 2.2.3

cpe:2.3:a:exponentcms:exponent_cms:2.2.3
Exponentcms » Exponent Cms » Version: 2.3.0

cpe:2.3:a:exponentcms:exponent_cms:2.3.0
Exponentcms » Exponent Cms » Version: 2.3.1

cpe:2.3:a:exponentcms:exponent_cms:2.3.1
Exponentcms » Exponent Cms » Version: 2.3.2

cpe:2.3:a:exponentcms:exponent_cms:2.3.2
Exponentcms » Exponent Cms » Version: 2.3.3

cpe:2.3:a:exponentcms:exponent_cms:2.3.3
Exponentcms » Exponent Cms » Version: 2.3.4

cpe:2.3:a:exponentcms:exponent_cms:2.3.4
Exponentcms » Exponent Cms » Version: 2.3.5

cpe:2.3:a:exponentcms:exponent_cms:2.3.5
Exponentcms » Exponent Cms » Version: 2.3.6

cpe:2.3:a:exponentcms:exponent_cms:2.3.6
Exponentcms » Exponent Cms » Version: 2.3.7

cpe:2.3:a:exponentcms:exponent_cms:2.3.7
Exponentcms » Exponent Cms » Version: 2.3.8

cpe:2.3:a:exponentcms:exponent_cms:2.3.8
Exponentcms » Exponent Cms » Version: 2.3.9

cpe:2.3:a:exponentcms:exponent_cms:2.3.9

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-7452

Products

Pricing

Contact Us