ID CVE-2017-9071
Summary In MODX Revolution before 2.5.7, an attacker might be able to trigger XSS by injecting a payload into the HTTP Host header of a request. This is exploitable only in conjunction with other issues such as Cache Poisoning.
References
Vulnerable Configurations
CVSS
Base: None
Impact:
Exploitability:
refmap via4
misc
Last major update 18-05-2017 - 12:29
Published 18-05-2017 - 12:29
Last modified 18-05-2017 - 12:29
Back to Top