Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
MODX Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability - CVE-2018-1000208 - Vulnerability Database
MODX

MODX Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability - CVE-2018-1000208

High
Reference: CVE-2018-1000208
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2018-1000208
Title: MODX Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Overview:

MODX Revolution version lt2.6.4 contains a Directory Traversal vulnerability in /core/model/modx/modmanagerrequest.class.php that can result in remove files. This attack appear to be exploitable via web request via security/login processor. This vulnerability appears to have been fixed in pull 13980.