Main Vulnerability Database Vulnerabilities #VU38971

Path traversal in MODX Revolution and PHP - CVE-2017-9067

Published: May 18, 2017 / Updated: August 8, 2020

Vulnerability identifier: #VU38971

CSH Severity: Low

CVSS v4.0: CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2017-9067

CWE-ID: CWE-22

Exploitation vector: Local access

Exploit availability: No public exploit available

Vendor: MODX
PHP Group

Affected software:
MODX Revolution
PHP

Detailed vulnerability description

The vulnerability allows a local authenticated user to execute arbitrary code.

In MODX Revolution before 2.5.7, when PHP 5.3.3 is used, an attacker is able to include and execute arbitrary files on the web server due to insufficient validation of the action parameter to setup/index.php, aka directory traversal.

How to mitigate CVE-2017-9067

Install update from vendor's website.

Sources

https://citadelo.com/en/2017/04/modx-revolution-cms/
https://github.com/modxcms/revolution/pull/13422
https://github.com/modxcms/revolution/pull/13428

Path traversal in MODX Revolution and PHP - CVE-2017-9067

Detailed vulnerability description

How to mitigate CVE-2017-9067

Sources

Please verify you're human