High severity7.5NVD Advisory· Published Nov 3, 2016· Updated Jun 17, 2026
CVE-2016-9135
CVE-2016-9135
Description
Exponent CMS 2.3.9 suffers from a SQL injection vulnerability in "/framework/modules/help/controllers/helpController.php" affecting the version parameter. Impact is Information Disclosure.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:exponentcms:exponent_cms:2.3.9:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:exponentcms:exponent_cms:2.3.9:*:*:*:*:*:*:*
- (no CPE)range: =2.3.9
Patches
Vulnerability mechanics
References
2- github.com/exponentcms/exponent-cms/commit/d5c3c175b60bd26b2b74ec85b8f0d2544db2c8dbnvdIssue TrackingPatchThird Party Advisory
- www.securityfocus.com/bid/94127nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.