CVE-2017-9069

CVE-2017-9069

EPSS 1.9%

In MODX Revolution before 2.5.7, a user with file upload permissions is able to execute arbitrary code by uploading a file with the name .htaccess.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://citadelo.com/en/2017/04/modx-revolution-cms/https://github.com/modxcms/revolution/pull/13423