mirror of
https://github.com/0xMarcio/cve.git
synced 2026-03-27 05:01:13 +01:00
732 B
732 B
CVE-2016-9087
Description
SQL injection vulnerability in framework/modules/filedownloads/controllers/filedownloadController.php in Exponent CMS 2.3.9 and earlier allows remote attackers to execute arbitrary SQL commands via the fileid parameter.
POC
Reference
Github
No PoCs found on GitHub currently.