Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 3:36 a.m.10 views

CVE-2017-9071

In MODX Revolution before 2.5.7, an attacker might be able to trigger XSS by injecting a payload into the HTTP Host header of a request. This is exploitable only in conjunction with other issues such as Cache Poisoning...

4.7CVSS5.9AI score0.00649EPSS
Exploits1References1
NVD
NVD
added 2017/05/18 4:29 p.m.17 views

CVE-2017-9071

In MODX Revolution before 2.5.7, an attacker might be able to trigger XSS by injecting a payload into the HTTP Host header of a request. This is exploitable only in conjunction with other issues such as Cache Poisoning...

4.7CVSS4.6AI score0.00649EPSS
Exploits1References2
CVE
CVE
added 2017/05/18 4:0 p.m.61 views

CVE-2017-9071

MODX Revolution prior to version 2.5.7 is affected by an XSS vulnerability triggered by injecting a payload into the HTTP Host header, as part of a vulnerability chain (often with Cache Poisoning). The affected product is MODX Revolution; the issue is exploitable over the network and requires use...

4.7CVSS4.8AI score0.00649EPSS
Exploits1References2Affected Software1
OpenVAS
OpenVAS
added 2017/05/15 12:0 a.m.56 views

MODX CMS 2.x < 2.5.7 Multiple Vulnerabilities

MODX CMS is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:modx:revolution"; if description...

8.8CVSS5.9AI score0.01865EPSS
Exploits5References3
Rows per page
Query Builder