Lucene search
ModxcmsEvolution
2 matches found
CVE-2010-1427
Cross-site scripting (XSS) vulnerability in the SearchHighlight plugin in MODx Evolution before 1.0.3 allows remote attackers to inject arbitrary web script or HTML via unknown vectors related to AjaxSearch.
4.3CVSS5.6AI score0.00365EPSS
CVE-2011-0741
Multiple cross-site scripting (XSS) vulnerabilities in ModX Evolution before 1.0.5 allow remote attackers to inject arbitrary web script or HTML via the (1) installer or (2) image editor.
4.3CVSS5.9AI score0.00359EPSS