VYPR
Unrated severityNVD Advisory· Published Feb 2, 2011· Updated Jun 16, 2026

CVE-2011-0741

CVE-2011-0741

Description

Multiple cross-site scripting (XSS) vulnerabilities in ModX Evolution before 1.0.5 allow remote attackers to inject arbitrary web script or HTML via the (1) installer or (2) image editor.

Affected products

12
  • Modxcms/Evolution11 versions
    cpe:2.3:a:modxcms:evolution:*:*:*:*:*:*:*:*+ 10 more
    • cpe:2.3:a:modxcms:evolution:*:*:*:*:*:*:*:*range: <=1.0.4
    • cpe:2.3:a:modxcms:evolution:0.9.0:*:*:*:*:*:*:*
    • cpe:2.3:a:modxcms:evolution:0.9.1:*:*:*:*:*:*:*
    • cpe:2.3:a:modxcms:evolution:0.9.2.1:*:*:*:*:*:*:*
    • cpe:2.3:a:modxcms:evolution:0.9.5:*:*:*:*:*:*:*
    • cpe:2.3:a:modxcms:evolution:0.9.6:*:*:*:*:*:*:*
    • cpe:2.3:a:modxcms:evolution:0.9.6.1:*:*:*:*:*:*:*
    • cpe:2.3:a:modxcms:evolution:0.9.6.1:p1:*:*:*:*:*:*
    • cpe:2.3:a:modxcms:evolution:0.9.6.2:*:*:*:*:*:*:*
    • cpe:2.3:a:modxcms:evolution:1.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:modxcms:evolution:1.0.3:*:*:*:*:*:*:*
  • Modx/Revolutionllm-fuzzy
    Range: <1.0.5

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.