Page 5 of 36 results (0.007 seconds)

CVSS: 9.8EPSS: 2%CPEs: 1EXPL: 1

setup/templates/findcore.php in MODX Revolution 2.5.4-pl and earlier allows remote attackers to execute arbitrary PHP code via the core_path parameter. setup/templates/findcore.php en MODX Revolution 2.5.4-pl y versiones anteriores permite a atacantes remotos ejecutar código arbitrario PHP a través del parámetro core_path. • http://www.securityfocus.com/bid/97228 https://mazinahmed.net/services/public-reports/ModX%20-%20Responsible%20Disclosure%20-%20January%202017.pdf • CWE-94: Improper Control of Generation of Code ('Code Injection') •

CVSS: 9.8EPSS: 2%CPEs: 1EXPL: 1

setup/controllers/welcome.php in MODX Revolution 2.5.4-pl and earlier allows remote attackers to execute arbitrary PHP code via the config_key parameter to the setup/index.php?action=welcome URI. setup/controllers/welcome.php en MODX Revolution 2.5.4-pl y versiones anteriores permite a atacantes remotos ejecutar código PHP arbitrario a través del parámetro config_key para la URI setup/index.php?action=welcome. • http://www.securityfocus.com/bid/97228 https://mazinahmed.net/services/public-reports/ModX%20-%20Responsible%20Disclosure%20-%20January%202017.pdf • CWE-94: Improper Control of Generation of Code ('Code Injection') •

CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 1

setup/controllers/language.php in MODX Revolution 2.5.4-pl and earlier does not properly constrain the language parameter, which allows remote attackers to conduct Cookie-Bombing attacks and cause a denial of service (cookie quota exhaustion), or conduct HTTP Response Splitting attacks with resultant XSS, via an invalid parameter value. setup/controllers/language.php en MODX Revolution 2.5.4-pl y versiones anteriores no restringe adecuadamente el parámetro language, lo que permite a atacantes remotos llevar a cabo ataques de bombardeo de cookies y provocar una denegación de servicio (agotamiento de la cuota de cookie), o llevar a cabo ataques HTTP Response Splitting con XSS resultante, a través de un valor de parámetro no válido. • http://www.securityfocus.com/bid/97228 https://mazinahmed.net/services/public-reports/ModX%20-%20Responsible%20Disclosure%20-%20January%202017.pdf • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0

Directory traversal in /connectors/index.php in MODX Revolution before 2.5.2-pl allows remote attackers to perform local file inclusion/traversal/manipulation via a crafted dir parameter, related to browser/directory/remove. Salto de directorio en /connectors/index.php en MODX Revolution en versiones anteriores a 2.5.2-pl permite a atacantes remotos llevar a cabo inclusión/salto/manipulación de archivo local a través de un parámetro dir manipulado, relacionado con navegador/directorio/suprimir. • http://www.securityfocus.com/bid/95097 https://github.com/modxcms/revolution/pull/13177 https://raw.githubusercontent.com/modxcms/revolution/v2.5.2-pl/core/docs/changelog.txt • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •

CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0

Directory traversal in /connectors/index.php in MODX Revolution before 2.5.2-pl allows remote attackers to perform local file inclusion/traversal/manipulation via a crafted dir parameter, related to browser/directory/getfiles. Salto de directorio en /connectors/index.php en MODX Revolution en versiones anteriores a 2.5.2-pl permite a atacantes remotos llevar a cabo inclusión/salto/manipulación de archivo local a través de un parámetro dir manipulado, relacionado con navegador/directorio/obtener archivos. • http://www.securityfocus.com/bid/95096 https://github.com/modxcms/revolution/pull/13177 https://raw.githubusercontent.com/modxcms/revolution/v2.5.2-pl/core/docs/changelog.txt • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •