Description

Cross-site scripting (XSS) vulnerability in manager/index.php in MODx Revolution 2.0.2-pl allows remote attackers to inject arbitrary web script or HTML via the modhash parameter.

Remediation

References

CVE-2010-4883

Related Vulnerabilities

WordPress Plugin Email Verification for WooCommerce Unspecified Vulnerability (1.8.1)

WordPress Plugin WP HTML Sitemap Cross-Site Request Forgery (1.2)

WordPress Permissions, Privileges, and Access Controls Vulnerability (CVE-2009-2432)

LimeSurvey Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-28710)

Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-43437)

Severity

Low

Classification

CVE-2010-4883 CWE-707

Tags

Missing Update Known Vulnerabilities