Showing 1 - 1 of 1

CVE-2018-1000207

Status Candidate

Overview

MODX Revolution version <=2.6.4 contains a Incorrect Access Control vulnerability in Filtering user parameters before passing them into phpthumb class that can result in Creating file with custom a filename and content. This attack appear to be exploitable via Web request. This vulnerability appears to have been fixed in commit 06bc94257408f6a575de20ddb955aca505ef6e68.

Related Files

Modx Revolution Remote Code Execution: Posted Jul 18, 2018; Authored by Vitalii Rudnykh; Modx Revolution versions prior to 2.6.4 suffer from a remote code execution vulnerability.; tags | exploit, remote, code execution; advisories | CVE-2018-1000207; SHA-256 | f5cddd7fe8ee3b1b74a19b6347421d418c35c754a9c188ae4e825c67c6ac31bf; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 265 files
Ubuntu 60 files
Debian 19 files
LiquidWorm 18 files
Apple 9 files
Gentoo 5 files
Google Security Research 3 files
Chokri Hammedi 3 files
Alter Prime 3 files
Valentin Lobstein 2 files

File Archives

Systems

AIX (430)
Apple (2,126)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,163)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,604)
HPUX (881)
iOS (393)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (51,934)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (17,330)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (9,983)
UNIX (9,475)
UnixWare (188)
Windows (6,784)
Other

CVE-2018-1000207

Overview

Related Files

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems