Description
Cross-site scripting (XSS) vulnerability in manager/index.php in MODx Revolution 2.0.2-pl allows remote attackers to inject arbitrary web script or HTML via the modhash parameter.
Remediation
References
Related Vulnerabilities
Oracle Application Server CVE-2006-3709 Vulnerability (CVE-2006-3709)
WordPress Plugin All-In-One Security (AIOS)-Security and Firewall Cross-Site Scripting (3.9.7)
WordPress Plugin Blog2Social:Social Media Auto Post & Scheduler PHP Object Injection (5.7.0)
WordPress Plugin WP DSGVO Tools (GDPR) Unspecified Vulnerability (3.1.26)
MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-46148)