CVE-2018-20757

Published February 6th, 2019

View on NVD ↗

CVSS v3

N/A

CVSS v2

4.3

MEDIUM

Affected

1

PROJECT

Description

MODX Revolution through v2.7.0-pl allows XSS via an extended user field such as Container name or Attribute name.

modxcms/revolution

MODX Revolution - Content Management Framework

GitHub

1.4K