Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

MODX Revolution 2.3.1-pl Cross Site Scripting Vulnerability

🗓️ 18 Sep 2014 00:00:00Reported by High-Tech BridgeType 
zdt
 zdt🔗 0day.today👁 42 Views

MODX Revolution 2.3.1-pl Cross Site Scripting Vulnerability, CVE-2014-5451, Low ris

Related
Code
ReporterTitlePublishedViews
Family
CVE		CVE-2014-5451
6 Nov 201418:00
cve
Cvelist		CVE-2014-5451
6 Nov 201418:00
cvelist
EUVD		EUVD-2014-5338
7 Oct 202500:30
euvd
htbridge		Reflected Cross-Site Scripting (XSS) in MODX Revolution
20 Aug 201400:00
htbridge
NVD		CVE-2014-5451
6 Nov 201418:55
nvd
Packet Storm		MODX Revolution 2.3.1-pl Cross Site Scripting
17 Sep 201400:00
packetstorm
Prion		Cross site scripting
6 Nov 201418:55
prion
securityvulns		Reflected Cross-Site Scripting (XSS) in MODX Revolution
14 Oct 201400:00
securityvulns
securityvulns		Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
14 Oct 201400:00
securityvulns
Vendor: MODX
Vulnerable Version(s): 2.3.1-pl and probably prior
Tested Version: 2.3.1-pl
Advisory Publication:  August 20, 2014  [without technical details]
Vendor Notification: August 20, 2014 
Vendor Patch: September 11, 2014 
Public Disclosure: September 17, 2014 
Vulnerability Type: Cross-Site Scripting [CWE-79]
CVE Reference: CVE-2014-5451
Risk Level: Low 
CVSSv2 Base Score: 2.6 (AV:N/AC:H/Au:N/C:N/I:P/A:N)
Solution Status: Fixed by Vendor
Discovered and Provided: High-Tech Bridge Security Research Lab ( https://www.htbridge.com/advisory/ ) 

-----------------------------------------------------------------------------------------------

Advisory Details:

High-Tech Bridge Security Research Lab discovered vulnerability in MODX Revolution, which can be exploited to perform Cross-Site Scripting (XSS) attacks.


1) Reflected Cross-Site Scripting (XSS) in MODX Revolution: CVE-2014-5451

The vulnerability exists due to insufficient sanitization of input data passed via the "a" HTTP GET parameter to "/manager/" URL. A remote attacker can trick a logged-in administrator to open a specially crafted link and execute arbitrary HTML and script code in browser in context of the vulnerable website.
This vulnerability can be used against website administrator to perform phishing attacks, steal potentially sensitive data and gain complete control over web application.

The exploitation example below uses the "alert()" JavaScript function to display "immuniweb" word:

http://[host]/manager/?a=%22%20onload=%22javascript:alert%28/immuniweb/%29;%22%3E

-----------------------------------------------------------------------------------------------

Solution:

Update "manager/templates/default/header.tpl" file from GitHub.

More Information:
https://github.com/modxcms/revolution/issues/11966
https://github.com/modxcms/revolution/commit/e36f80f18e9514204bf2ce82747c8adf7e47a9c9

#  0day.today [2018-03-20]  #

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
18 Sep 2014 00:00Current
6.2Medium risk
Vulners AI Score6.2
EPSS0.00544
modx revolutioncross-site scriptingxsscve-2014-5451low riskgithubphishingvulnerabilityadministratorcontrolexploitationsanitizationupdate
42