CVE-2016-9026 Exponent CMS before 2.6.0 has improper input validation in fileController.php. View Full Alert Related Posts CVE-2016-1000229swagger-ui has XSS in key names View Full Alert CVE-2016-9021Exponent CMS before 2.6.0 has improper input validation in storeController.php. View Full Alert CVE-2016-9022Exponent CMS before 2.6.0 has improper input validation in usersController.php. View Full Alert