4 matches found
MODx 0.9.6 - 'index.php' Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/27672/info MODx is prone to an HTML-injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser ...
CVE-2007-5371
Multiple SQL injection vulnerabilities in mutatecontent.dynamic.php in MODx 0.9.6 allow remote attackers to execute arbitrary SQL commands via the 1 documentDirty or 2 modVariables parameter...
CVE-2007-5371
CVE-2007-5371 involves multiple SQL injection vulnerabilities in mutate_content.dynamic.php of MODx 0.9.6. The affected component is mutate_content.dynamic.php, enabling remote attackers to craft inputs via the documentDirty or modVariables parameters to execute arbitrary SQL commands on the data...
Vulnerabilities
New Advisory: modx-0.9.6 http://www.dear-pets.com ——————–Summary—————- Software: modx-0.9.6 Sowtware’s Web Site: http://www.modxcms.com Versions: 0.9.6 Critical Level: Moderate Type: Multiple Vulnerabilities Class: Remote Status: Unpatched PoC/Exploit: Not Available Solution: Not Available...