CVE-2016-2242
- Source
- https://cve.org/CVERecord?id=CVE-2016-2242
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2016-2242.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2016-2242
- Published
- 2017-01-23T21:59:01.097Z
- Modified
- 2026-04-10T03:49:00.804646Z
- Severity
-
- 9.8 (Critical) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
Exponent CMS 2.x before 2.3.7 Patch 3 allows remote attackers to execute arbitrary code via the sc parameter to install/index.php.
- References
-
- http://www.securityfocus.com/archive/1/537499/100/0/threaded
- http://www.exponentcms.org/news/patch-3-released-for-v2-3-7
- http://packetstormsecurity.com/files/135721/Exponent-2.3.7-PHP-Code-Execution.html
- http://www.exponentcms.org/news/show/title/security-notice-closing-an-exponent-security-vulnerability
- https://www.htbridge.com/advisory/HTB23290
Affected packages
Git / github.com/exponentcms/exponent-cms
Affected ranges
- Type
- GIT
- Repo
- https://github.com/exponentcms/exponent-cms
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affected
- Database specific
{ "versions": [ { "introduced": "0" }, { "last_affected": "2.0.0" }, { "introduced": "0" }, { "last_affected": "2.0.1" }, { "introduced": "0" }, { "last_affected": "2.0.2" }, { "introduced": "0" }, { "last_affected": "2.0.3" }, { "introduced": "0" }, { "last_affected": "2.0.4" }, { "introduced": "0" }, { "last_affected": "2.0.5" }, { "introduced": "0" }, { "last_affected": "2.0.5-p1" }, { "introduced": "0" }, { "last_affected": "2.0.6" }, { "introduced": "0" }, { "last_affected": "2.0.6-p2" }, { "introduced": "0" }, { "last_affected": "2.0.7" }, { "introduced": "0" }, { "last_affected": "2.0.8" }, { "introduced": "0" }, { "last_affected": "2.0.8-p2" }, { "introduced": "0" }, { "last_affected": "2.0.9" }, { "introduced": "0" }, { "last_affected": "2.0.9-p5" }, { "introduced": "0" }, { "last_affected": "2.1.1" }, { "introduced": "0" }, { "last_affected": "2.1.2" }, { "introduced": "0" }, { "last_affected": "2.1.3" }, { "introduced": "0" }, { "last_affected": "2.1.4" }, { "introduced": "0" }, { "last_affected": "2.1.4-p11" }, { "introduced": "0" }, { "last_affected": "2.2.0" }, { "introduced": "0" }, { "last_affected": "2.2.0-p5" }, { "introduced": "0" }, { "last_affected": "2.2.1" }, { "introduced": "0" }, { "last_affected": "2.2.2" }, { "introduced": "0" }, { "last_affected": "2.2.2-p2" }, { "introduced": "0" }, { "last_affected": "2.2.3" }, { "introduced": "0" }, { "last_affected": "2.2.3-p14" }, { "introduced": "0" }, { "last_affected": "2.3.0" }, { "introduced": "0" }, { "last_affected": "2.3.0-p4" }, { "introduced": "0" }, { "last_affected": "2.3.1" }, { "introduced": "0" }, { "last_affected": "2.3.1-p4" }, { "introduced": "0" }, { "last_affected": "2.3.2" }, { "introduced": "0" }, { "last_affected": "2.3.2-p2" }, { "introduced": "0" }, { "last_affected": "2.3.3" }, { "introduced": "0" }, { "last_affected": "2.3.3-p1" }, { "introduced": "0" }, { "last_affected": "2.3.4" }, { "introduced": "0" }, { "last_affected": "2.3.4-p1" }, { "introduced": "0" }, { "last_affected": "2.3.5" }, { "introduced": "0" }, { "last_affected": "2.3.5-p2" }, { "introduced": "0" }, { "last_affected": "2.3.7" }, { "introduced": "0" }, { "last_affected": "2.3.8" } ] }
Affected versions
Other
Beta1
beta1.*
beta1.1
v2.*
v2.0.0
v2.0.0.beta2
v2.0.0.beta2.1
v2.0.0.beta3
v2.0.0.beta4
v2.0.0.release-candidate1
v2.0.0.release-candidate2
v2.0.1
v2.0.1patch1
v2.0.2
v2.0.3
v2.0.4
v2.0.5
v2.0.5patch1
v2.0.6
v2.0.6patch1
v2.0.6patch2
v2.0.7
v2.0.8
v2.0.8patch1
v2.0.8patch2
v2.0.9
v2.0.9patch1
v2.0.9patch2
v2.0.9patch3
v2.0.9patch4
v2.0.9patch5
v2.1.0
v2.1.1
v2.1.2
v2.1.3
v2.1.4
v2.1.4patch1
v2.1.4patch11
v2.1.4patch2
v2.1.4patch6
v2.1.4patch7
v2.1.4patch8
v2.1.4patch9
v2.2.0
v2.2.0patch1
v2.2.0patch2
v2.2.0patch3
v2.2.0patch4
v2.2.0patch5
v2.2.1
v2.2.2
v2.2.2patch1
v2.2.2patch2
v2.2.3
v2.2.3patch1
v2.2.3patch10
v2.2.3patch11
v2.2.3patch12
v2.2.3patch14
v2.2.3patch2
v2.2.3patch3
v2.2.3patch4
v2.2.3patch5
v2.2.3patch9
v2.3.0
v2.3.0patch1
v2.3.0patch2
v2.3.0patch3
v2.3.0patch4
v2.3.1
v2.3.1patch4
v2.3.2
v2.3.2patch1
v2.3.2patch2
v2.3.3
v2.3.3patch1
v2.3.4
v2.3.4patch1
v2.3.5
v2.3.5patch1
v2.3.5patch2
v2.3.6
v2.3.7
v2.3.7patch1
v2.3.7patch2
v2.3.7patch3
v2.3.7patch4
v2.3.8