MODX Revolution through v2.7.0-pl allows XSS via a document resource (such as pagetitle), which is mishandled during an Update action, a Quick Edit action, or the viewing of manager logs.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
modx modx revolution |
||
modx modx revolution 2.7.0 |