CVE

CVE-2018-20757

CVE-2018-20757

MODX Revolution through v2.7.0-pl allows XSS via an extended user field such as Container name or Attribute name.

Source: CVE-2018-20757

Exit mobile version