Description

SQL injection vulnerability in modx.class.php in MODX Revolution 2.0.0 before 2.2.13 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

Remediation

References

CVE-2014-2311

Related Vulnerabilities

Oracle Database Server CVE-2006-0266 Vulnerability (CVE-2006-0266)

phpMyFAQ Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2017-15732)

WordPress Plugin uContext for Clickbank Cross-Site Request Forgery (3.9.1)

Python Integer Overflow or Wraparound Vulnerability (CVE-2008-3144)

PHP version older than 5.2.5

Severity

High

Classification

CVE-2014-2311 CWE-138

Tags

Missing Update Known Vulnerabilities