CVE ID | Publié | Description | Score | Gravité |
---|---|---|---|---|
MODX Revolution through v2.7.0-pl allows XSS via the User Photo field. | 6.1 |
Moyen |
||
MODX Revolution through v2.7.0-pl allows XSS via a document resource (such as pagetitle), which is mishandled during an Update action, a Quick Edit action, or the viewing of manager logs. | 6.1 |
Moyen |
||
MODX Revolution through v2.7.0-pl allows XSS via an extended user field such as Container name or Attribute name. | 6.1 |
Moyen |
||
MODX Revolution through v2.7.0-pl allows XSS via User Settings such as Description. | 5.4 |
Moyen |