Multiple cross-site scripting (XSS) vulnerabilities in MODx before 0.9.6.3 allow remote attackers to inject arbitrary web script or HTML via vectors related to (1) the preserveUrls function and (2) "username input." NOTE: vector 2 may be related to CVE-2008-5939.
Metrics
Affected Vendors & Products
References
History
No history.

Status: PUBLISHED
Assigner: mitre
Published: 2009-01-22T11:00:00
Updated: 2024-08-07T11:13:13.859Z
Reserved: 2009-01-21T00:00:00
Link: CVE-2008-5942

No data.

Status : Modified
Published: 2009-01-22T11:30:05.390
Modified: 2024-11-21T00:55:16.123
Link: CVE-2008-5942

No data.