Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Modx Subscribe
Filtered by product Evolution Cms
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2019-14518 1 Modx 1 Evolution Cms 2019-08-21 3.5 LOW 5.4 MEDIUM
** DISPUTED ** Evolution CMS 2.0.x allows XSS via a description and new category location in a template. NOTE: the vendor states that the behavior is consistent with the "access policy in the administration panel."
CVE-2018-16638 1 Modx 1 Evolution Cms 2019-02-26 3.5 LOW 5.4 MEDIUM
Evolution CMS 1.4.x allows XSS via the manager/ search parameter.
CVE-2018-16637 1 Modx 1 Evolution Cms 2019-02-26 3.5 LOW 5.4 MEDIUM
Evolution CMS 1.4.x allows XSS via the page weblink title parameter to the manager/ URI.