CVE-2008-5940

2009-01-22T11:30:00
ID CVE-2008-5940
Type cve
Reporter cve@mitre.org
Modified 2017-08-08T01:33:00

Description

SQL injection vulnerability in index.php in MODx 0.9.6.2 and earlier, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the searchid parameter. NOTE: some of these details are obtained from third party information.