Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
MODX Revolution through 2.8.3-pl allows remote authenticated administrators to execute arbitrary code by uploading an executable file, because the Uploadable File Types setting can be changed by an administrator.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
MODX Revolution 代码问题漏洞
Vulnerability Description
MODX Revolution是美国MODX公司的一套基于PHP的开源内容管理系统(CMS)。该系统支持在线协作、搜索引擎优化(SEO)等。 MODX Revolution 存在安全漏洞,该漏洞源于通过2.8.3-pl的MODX Revolution允许远程认证的管理员通过上传可执行文件来执行任意代码,因为管理员可以更改可上传文件类型设置。
CVSS Information
N/A
Vulnerability Type
N/A