Vulnerabilities > Exponent > Exponent CMS
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2007-04-25 | CVE-2007-2253 | Information Exposure vulnerability in Exponent CMS Exponent CMS 0.96.6 Alpha and earlier allows remote attackers to obtain path information via a direct request for (1) sdk/blanks/formcontrol.php and (2) sdk/blanks/file_modules.php. | 5.0 |
| 2007-04-25 | CVE-2007-2252 | Input Validation vulnerability in Exponent CMS 0.96.5Rc1/0.96.6Alpha Directory traversal vulnerability in iconspopup.php in Exponent CMS 0.96.6 Alpha and earlier allows remote attackers to obtain sensitive information via a .. | 5.0 |
| 2006-09-23 | CVE-2006-4963 | Local File Include vulnerability in Exponent CMS 0.96.3 Directory traversal vulnerability in index.php in Exponent CMS 0.96.3 allows remote attackers to read and execute arbitrary local files via a .. | 6.4 |
| 2006-04-04 | CVE-2006-1607 | Unspecified vulnerability in Exponent CMS Unspecified vulnerability in the banner module in Exponent CMS before 0.96.5 RC 1 allows "php injection" via unknown attack vectors. | 7.5 |
| 2006-04-04 | CVE-2006-1606 | Unspecified vulnerability in Exponent CMS Unspecified vulnerability in the image module in Exponent CMS before 0.96.5 RC 1 allows "directory disclosure" with unknown attack vectors. | 5.0 |
| 2006-04-04 | CVE-2006-1605 | Unspecified vulnerability in Exponent CMS Unspecified vulnerability in the image module in Exponent CMS before 0.96.5 RC 1 allows remote attackers to execute arbitrary code via unknown vectors involving "parsed PHP." | 7.5 |
| 2006-04-04 | CVE-2006-1604 | Unspecified vulnerability in Exponent CMS Unspecified vulnerability in Exponent CMS before 0.96.5 RC 1 has unknown impact and remote attack vectors related to variables that are not "typecasted." | 10.0 |