| CVE-2017-1000067 |
high |
8.8 |
8.8 |
|
|
|
9y ago |
MODX Revolution blind SQL injection |
| CVE-2017-9069 |
high |
8.8 |
8.8 |
|
|
|
9y ago |
MODX Revolution allows overwriting .htaccess |
| CVE-2017-9067 |
high |
7.0 |
7.0 |
|
|
|
9y ago |
MODX Revolution Directory Traversal Vulnerability |
| CVE-2017-9068 |
medium |
6.1 |
6.1 |
|
|
|
9y ago |
MODX Revolution Reflected XSS |
| CVE-2017-9070 |
medium |
5.4 |
5.4 |
|
|
|
9y ago |
MODX Revolution cross-site scripting vulnerability |
| CVE-2017-9071 |
medium |
4.7 |
4.7 |
|
|
|
9y ago |
MODX Revolution XSS via HTTP Host header |
| CVE-2025-28010 |
unknown |
— |
— |
|
|
|
1y ago |
MODX allows cross-site scripting (XSS) via an SVG file |
| CVE-2018-20756 |
unknown |
— |
— |
|
|
|
4y ago |
MODX Revolution allows XSS via document resources |
| CVE-2018-20757 |
unknown |
— |
— |
|
|
|
4y ago |
MODX Revolution allows XSS through extended user fields |
| CVE-2018-20755 |
unknown |
— |
— |
|
|
|
4y ago |
MODX Revolution vulnerable to XSS attack through its User Photo field |
| CVE-2018-1000207 |
unknown |
— |
— |
|
|
|
4y ago |
MODX Revolution Incorrect Access Control vulnerability |
| CVE-2018-20758 |
unknown |
— |
— |
|
|
|
4y ago |
MODX vulnerability allows for XSS via user settings parameters |
| CVE-2022-26149 |
unknown |
— |
— |
|
|
|
4y ago |
Unrestricted Upload of File with Dangerous Type in MODX Revolution |
| CVE-2020-25911 |
unknown |
— |
— |
|
|
|
5y ago |
XML External Entity vulnerability in MODX CMS |