Security Advisory

CVE-2017-7321

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2017-03-30 07:00:00

Last updated 2024-08-05 15:56:36

Assigner mitre

State PUBLISHED

Description

setup/controllers/welcome.php in MODX Revolution 2.5.4-pl and earlier allows remote attackers to execute arbitrary PHP code via the config_key parameter to the setup/index.php?action=welcome URI.

← Browse all CVEs View on cve.org ↗