MODX Unrestricted Upload of File with Dangerous Type Vulnerability - CVE-2017-9069 - Vulnerability Database

MODX Unrestricted Upload of File with Dangerous Type Vulnerability - CVE-2017-9069

High

Reference: CVE-2017-9069

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2017-9069

Title: MODX Unrestricted Upload of File with Dangerous Type Vulnerability

Overview:

In MODX Revolution before 2.5.7 a user with file upload permissions is able to execute arbitrary code by uploading a file with the name .htaccess.