Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
MODX Unrestricted Upload of File with Dangerous Type Vulnerability - CVE-2017-9069 - Vulnerability Database
MODX

MODX Unrestricted Upload of File with Dangerous Type Vulnerability - CVE-2017-9069

High
Reference: CVE-2017-9069
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2017-9069
Title: MODX Unrestricted Upload of File with Dangerous Type Vulnerability
Overview:

In MODX Revolution before 2.5.7 a user with file upload permissions is able to execute arbitrary code by uploading a file with the name .htaccess.