Filtered by vendor Modx
Subscriptions
Total
43 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2017-1000067 | 1 Modx | 1 Revolution | 2017-07-21 | N/A |
| MODX Revolution version 2.x - 2.5.6 is vulnerable to blind SQL injection caused by improper sanitization by the escape method resulting in authenticated user accessing database and possibly escalating privileges. | ||||
| CVE-2016-10038 | 1 Modx | 1 Modx Revolution | 2016-12-29 | N/A |
| Directory traversal in /connectors/index.php in MODX Revolution before 2.5.2-pl allows remote attackers to perform local file inclusion/traversal/manipulation via a crafted dir parameter, related to browser/directory/remove. | ||||
| CVE-2014-2080 | 1 Modx | 1 Modx Revolution | 2015-07-30 | N/A |
| Cross-site scripting (XSS) vulnerability in manager/templates/default/header.tpl in ModX Revolution before 2.2.11 allows remote attackers to inject arbitrary web script or HTML via the "a" parameter. | ||||