Security Bulletin

MODX Revolution Directory Traversal Vulnerability

Date:2016-12-27

Vulnerability discovered time: 2016-12-27

CVE Reference(s):

CVE-2016-10038

CVE-2016-10039

BUGTRAQ:

The affected system:

MODX Revolution < 2.5.2-pl

Vulnerability description:

 

MODX Revolution is prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input.

 

A remote attacker could exploit this issue using directory-traversal characters ('../') to access arbitrary files that contain sensitive information. Information harvested may aid in launching further attacks.

 

Versions prior to MODX Revolution 2.5.2-pl are vulnerable.

 

Solution:

Please see the references or vendor advisoryfor more information.

Source reference:

http://www.linuxidc.com/Linux/2016-12/138859.htm

Expert suggestion:

https://github.com/modxcms/revolution/pull/13177

https://raw.githubusercontent.com/modxcms/revolution/v2.5.2-pl/core/docs/changelog.txt