Arbitrary SQL Command Execution in MODX Revolution 2.0.0 - 2.2.13

Arbitrary SQL Command Execution in MODX Revolution 2.0.0 - 2.2.13

CVE-2014-2311 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

SQL injection vulnerability in modx.class.php in MODX Revolution 2.0.0 before 2.2.13 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

Learn more about our Web Application Penetration Testing UK.