PT-2018-9375 · Modx+1 · Modx Revolution+1

Alroniks

Published

2018-07-13

Updated

2022-05-13

CVE-2018-1000207

CVSS v3.1

7.2

High

Vector

AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions MODX Revolution versions prior to 2.6.5

Description The issue is related to incorrect access control in filtering user parameters before passing them into the phpthumb class, which can result in creating a file with a custom filename and content. This can be exploited via a web request.

Recommendations For MODX Revolution versions prior to 2.6.5, update to version 2.6.5 or later to resolve the issue. As a temporary workaround, consider restricting access to the phpthumb class until a patch is available.

Exploit

Fix

Incorrect Permission

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-732

Related Identifiers

CVE-2018-1000207

GHSA-M899-6MH4-MPC5

Affected Products

Modx Revolution

Phpthumb

PT-2018-9375 · Modx+1 · Modx Revolution+1

CVE-2018-1000207

Weakness Enumeration

Related Identifiers

Affected Products

References · 9