Modx - Revolution CVE

Filtered by vendor Modx Subscribe

Filtered by product Revolution

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2010-4883	1 Modx	1 Revolution	2017-08-29	2.6 LOW	N/A
Cross-site scripting (XSS) vulnerability in manager/index.php in MODx Revolution 2.0.2-pl allows remote attackers to inject arbitrary web script or HTML via the modhash parameter.
CVE-2017-1000067	1 Modx	1 Revolution	2017-07-21	6.5 MEDIUM	8.8 HIGH
MODX Revolution version 2.x - 2.5.6 is vulnerable to blind SQL injection caused by improper sanitization by the escape method resulting in authenticated user accessing database and possibly escalating privileges.

Vulnerabilities (CVE)