CVE-2016-10038

2016-12-2411:59:00

CWE-22

web.nvd.nist.gov

cve-2016-10038

modx revolution

directory traversal

remote attackers

local file inclusion

crafted parameter

7.2 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

52.0%

CPENameOperatorVersion
modx:modx_revolutionmodx modx revolutionle2.5.1-pl

CPE	Name	Operator	Version
modx:modx_revolution	modx modx revolution	le	2.5.1-pl

References

www.securityfocus.com/bid/95097

github.com/modxcms/revolution/pull/13177

raw.githubusercontent.com/modxcms/revolution/v2.5.2-pl/core/docs/changelog.txt