ExponentCMS 漏洞列表

共找到 2 个与 ExponentCMS 相关的漏洞

📅 加载漏洞趋势中...

CVE-2021-38751: ExponentCMS <= 2.6 - Host Header Injection POC

日期: 2025-08-01 | 影响软件: ExponentCMS

An HTTP Host header attack exists in ExponentCMS 2.6 and below in /exponent_constants.php. A modified HTTP header can change links on the webpage to an arbitrary value,leading to a possible attack vector for MITM.
CVE-2021-38751: ExponentCMS <= 2.6 - Host Header Injection POC

日期: 2025-08-01 | 影响软件: ExponentCMS

An HTTP Host header attack exists in ExponentCMS 2.6 and below in /exponent_constants.php. A modified HTTP header can change links on the webpage to an arbitrary value,leading to a possible attack vector for MITM.