MODX Improper Restriction of XML External Entity Reference Vulnerability - CVE-2020-25911 - Vulnerability Database

MODX Improper Restriction of XML External Entity Reference Vulnerability - CVE-2020-25911

Critical

Reference: CVE-2020-25911

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2020-25911

Title: MODX Improper Restriction of XML External Entity Reference Vulnerability

Overview:

A XML External Entity (XXE) vulnerability was discovered in the modRestServiceRequest component in MODX CMS 2.7.3 which can lead to an information disclosure or denial of service (DOS).