ID CVE-2017-9070
Summary In MODX Revolution before 2.5.7, a user with resource edit permissions can inject an XSS payload into the title of any post via the pagetitle parameter to connectors/index.php.
References
Vulnerable Configurations
CVSS
Base: None
Impact:
Exploitability:
refmap via4
misc
Last major update 18-05-2017 - 12:29
Published 18-05-2017 - 12:29
Last modified 18-05-2017 - 12:29
Back to Top