Description
MODX Revolution through v2.7.0-pl allows XSS via User Settings such as Description.
Analysis
No analysis available yet.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| n/a | n/a | affected |
|
No data.
No data available yet.
Remediation
No remediation available yet.
Tracking
Sign in to view the affected projects.
Advisories
| Source | ID | Title |
|---|---|---|
 EUVD |
EUVD-2018-13301 | MODX vulnerability allows for XSS via user settings parameters |
 Github GHSA |
GHSA-vwqw-wfhv-2xcq | MODX vulnerability allows for XSS via user settings parameters |
References
| Link | Providers |
|---|---|
| https://github.com/modxcms/revolution/issues/14103 |
|
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-08-05T12:12:28.297Z
Reserved: 2019-02-06T00:00:00.000Z
Link: CVE-2018-20758
Vulnrichment
No data.
NVD
Status : Modified
Published: 2019-02-06T17:29:00.407
Modified: 2024-11-21T04:02:06.547
Link: CVE-2018-20758
Redhat
No data.
OpenCVE Enrichment
No data.
Weaknesses