MODX Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2014-2311)

Description

SQL injection vulnerability in modx.class.php in MODX Revolution 2.0.0 before 2.2.13 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

Remediation

References

CVE-2014-2311

Related Vulnerabilities

WordPress Plugin Ceceppa Multilingua Cross-Site Scripting (1.5.17)

Oracle Database Server CVE-2011-0811 Vulnerability (CVE-2011-0811)

Drupal Core 7.x Multiple Vulnerabilities (7.0 - 7.34)

WordPress Plugin Integration for Contact Form 7 and Mailchimp Cross-Site Scripting (1.0.9)

WordPress Plugin Portfolio Gallery-Image Gallery Cross-Site Request Forgery (1.1.2)

Severity

High

Classification

CVE-2014-2311 CWE-138

Description

Remediation

References

Related Vulnerabilities

Severity

Classification

Tags

Take action and discover your vulnerabilities