← Back to CVE List

CVE-2017-7321

Published: 2017-03-30T07:59Z
Last Modified: 2024-11-21T03:31Z
Source: MITRE CVE List
License: MITRE-CVE-TOS
setup/controllers/welcome.php in MODX Revolution 2.5.4-pl and earlier allows remote attackers to execute arbitrary PHP code via the config_key parameter to the setup/index.php?action=welcome URI. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt