JVNDB-2007-000094

MODx cross-site scripting vulnerability

MODxl, an open source content management system, contains a cross-site scripting vulnerability.

Base Metrics: 4.3 (Medium) [IPA Score]

• Access Vector: Network
• Access Complexity: Medium
• Authentication: None
• Confidentiality Impact: None
• Integrity Impact: Partial
• Availability Impact: None

MODx

• MODx 0.9.2.x and earlier

An arbitrary script may be executed on the user's web browser. If session information from a cookie is leaked, an attacker could possibly conduct session hijacking.

MODx

• MODx : Get MODx Here

1. JVN : JVN#80271113

[2008/05/21]
  Web page published