Description
In MODX Revolution before 2.5.7, when PHP 5.3.3 is used, an attacker is able to include and execute arbitrary files on the web server due to insufficient validation of the action parameter to setup/index.php, aka directory traversal.
References (3)
Core 3
Core References
Exploit, Third Party Advisory x_refsource_misc
https://citadelo.com/en/2017/04/modx-revolution-cms/
Third Party Advisory x_refsource_misc
https://github.com/modxcms/revolution/pull/13428
Third Party Advisory x_refsource_misc
https://github.com/modxcms/revolution/pull/13422
Scores
CVSS v3
7.0
EPSS
0.0024
EPSS Percentile
46.8%
Attack Vector
LOCAL
CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-22
Status
published
Products (3)
modx/modx_revolution
2.5.6
modx/revolution
0 - 2.5.7Packagist
php/php
5.3.3
Published
May 18, 2017
Tracked Since
Feb 18, 2026