Description

Cross-site scripting (XSS) vulnerability in manager/index.php in MODx Revolution 2.0.2-pl allows remote attackers to inject arbitrary web script or HTML via the modhash parameter.

Remediation

References

CVE-2010-4883

Related Vulnerabilities

PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-7414)

Java Unspesificed Vulnerability (CVE-2018-2941)

MySQL CVE-2020-14812 Vulnerability (CVE-2020-14812)

Atlassian Confluence Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-36290)

MySQL CVE-2016-0656 Vulnerability (CVE-2016-0656)

Severity

Low

Classification

CVE-2010-4883 CWE-707

Tags

Missing Update Known Vulnerabilities