Lucene search
K

4 matches found

Exploit DB
Exploit DB
added 2008/02/07 12:0 a.m.26 views

MODx 0.9.6 - 'index.php' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/27672/info MODx is prone to an HTML-injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser ...

7.4AI score
Exploits0
Cvelist
Cvelist
added 2007/10/11 10:0 a.m.16 views

CVE-2007-5371

Multiple SQL injection vulnerabilities in mutatecontent.dynamic.php in MODx 0.9.6 allow remote attackers to execute arbitrary SQL commands via the 1 documentDirty or 2 modVariables parameter...

8.5AI score0.00988EPSS
Exploits0References3
CVE
CVE
added 2007/10/11 10:0 a.m.41 views

CVE-2007-5371

CVE-2007-5371 involves multiple SQL injection vulnerabilities in mutate_content.dynamic.php of MODx 0.9.6. The affected component is mutate_content.dynamic.php, enabling remote attackers to craft inputs via the documentDirty or modVariables parameters to execute arbitrary SQL commands on the data...

6.8CVSS8.5AI score0.00988EPSS
Exploits0References3Affected Software1
securityvulns
securityvulns
added 2007/10/10 12:0 a.m.58 views

Vulnerabilities

New Advisory: modx-0.9.6 http://www.dear-pets.com ——————–Summary—————- Software: modx-0.9.6 Sowtware’s Web Site: http://www.modxcms.com Versions: 0.9.6 Critical Level: Moderate Type: Multiple Vulnerabilities Class: Remote Status: Unpatched PoC/Exploit: Not Available Solution: Not Available...

0.9AI score
Exploits0
Rows per page
Query Builder