CVE-2016-9287

Name of the Vulnerable Software and Affected Versions Exponent CMS version 2.4.0 patch1

Description The issue arises from untrusted input being passed into the getSearchResults method in the /framework/modules/notfound/controllers/notfoundController.php file. This method, defined in the search model, uses the parameter $term directly in SQL, leading to a SQL injection issue.

Recommendations For Exponent CMS version 2.4.0 patch1, consider modifying the getSearchResults method to properly sanitize or parameterize the $term variable to prevent direct SQL injection. As a temporary workaround, restrict access to the notfoundController.php file to minimize the risk of exploitation.