CVE-2018-20756

Publication date

2019-02-06 17:00:00

Family

mitre

State

PUBLISHED

Description

MODX Revolution through v2.7.0-pl allows XSS via a document resource (such as pagetitle), which is mishandled during an Update action, a Quick Edit action, or the viewing of manager logs.