CVE-2011-0741 Information

Description

Multiple cross-site scripting (XSS) vulnerabilities in ModX Evolution before 1.0.5 allow remote attackers to inject arbitrary web script or HTML via the (1) installer or (2) image editor.

Reference

http://modxcms.com/forums/index.php/topic60045.0.html http://www.securityfocus.com/bid/46154 https://exchange.xforce.ibmcloud.com/vulnerabilities/65164