Opengeek

**Name of the Vulnerable Software and Affected Versions** MODX Revolution versions prior to 2.5.7 **Description** The issue arises from insufficient validation of the `action` parameter to the "setup/index.php" endpoint, allowing an attacker to include and execute arbitrary files on the web server due to directory traversal. This can occur when PHP 5.3.3 is used. **Recommendations** For MODX Revolution versions prior to 2.5.7, update to version 2.5.7 or later to resolve the issue. As a temporary workaround, consider restricting access to the "setup/index.php" endpoint to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** MODX Revolution versions prior to 2.5.7 **Description** The issue allows an attacker to potentially trigger XSS by injecting a payload into the HTTP Host header of a request. This is only exploitable in conjunction with other issues, such as Cache Poisoning. **Recommendations** For MODX Revolution versions prior to 2.5.7, update to version 2.5.7 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** MODX Revolution version 2.5.7 **Description** The issue allows remote attackers to obtain system directory information due to directory traversal in the setup/processors/url search.php file, also known as the search page of an unused processor. **Recommendations** For MODX Revolution version 2.5.7, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** ModX Revolution versions prior to 2.2.11 **Description** A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML via the `a` parameter in the manager/templates/default/header.tpl file. **Recommendations** For versions prior to 2.2.11, update to version 2.2.11 or later to resolve the issue.