{"api_version":"1","generated_at":"2026-05-30T10:35:11+00:00","cve":"CVE-2017-1000067","urls":{"html":"https://cve.report/CVE-2017-1000067","api":"https://cve.report/api/cve/CVE-2017-1000067.json","docs":"https://cve.report/api","cve_org":"https://www.cve.org/CVERecord?id=CVE-2017-1000067","nvd":"https://nvd.nist.gov/vuln/detail/CVE-2017-1000067"},"summary":{"title":"CVE-2017-1000067","description":"MODX Revolution version 2.x - 2.5.6 is vulnerable to blind SQL injection caused by improper sanitization by the escape method resulting in authenticated user accessing database and possibly escalating privileges.","state":"PUBLISHED","assigner":"mitre","published_at":"2017-07-17 13:18:18","updated_at":"2025-04-20 01:37:25"},"problem_types":["CWE-89","n/a"],"metrics":[{"version":"3.0","source":"nvd@nist.gov","type":"Primary","score":"8.8","severity":"HIGH","vector":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","data":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"}},{"version":"2.0","source":"nvd@nist.gov","type":"Primary","score":"6.5","severity":"","vector":"AV:N/AC:L/Au:S/C:P/I:P/A:P","data":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:P/I:P/A:P","baseScore":6.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"}}],"references":[{"url":"https://github.com/modxcms/revolution/blob/9bf1c6cf7bdc12190b404f93ce7798b39c07bc59/core/xpdo/changelog.txt","name":"https://github.com/modxcms/revolution/blob/9bf1c6cf7bdc12190b404f93ce7798b39c07bc59/core/xpdo/changelog.txt","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["Release Notes","Third Party Advisory"],"title":"revolution/changelog.txt at 9bf1c6cf7bdc12190b404f93ce7798b39c07bc59 · modxcms/revolution · GitHub","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://www.cve.org/CVERecord?id=CVE-2017-1000067","name":"CVE Program record","refsource":"CVE.ORG","tags":["canonical"]},{"url":"https://nvd.nist.gov/vuln/detail/CVE-2017-1000067","name":"NVD vulnerability detail","refsource":"NVD","tags":["canonical","analysis"]}],"affected":[{"source":"CNA","vendor":"n/a","product":"n/a","version":"affected n/a","platforms":[]}],"timeline":[],"solutions":[],"workarounds":[],"exploits":[],"credits":[],"nvd_cpes":[{"cve_year":"2017","cve_id":"1000067","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"modx","cpe5":"revolution","cpe6":"2.0.0","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2017","cve_id":"1000067","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"modx","cpe5":"revolution","cpe6":"2.0.0","cpe7":"rc1","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2017","cve_id":"1000067","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"modx","cpe5":"revolution","cpe6":"2.0.0","cpe7":"rc2","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2017","cve_id":"1000067","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"modx","cpe5":"revolution","cpe6":"2.0.0","cpe7":"rc3","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2017","cve_id":"1000067","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"modx","cpe5":"revolution","cpe6":"2.0.1","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2017","cve_id":"1000067","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"modx","cpe5":"revolution","cpe6":"2.1.0","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2017","cve_id":"1000067","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"modx","cpe5":"revolution","cpe6":"2.1.0","cpe7":"p12","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2017","cve_id":"1000067","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"modx","cpe5":"revolution","cpe6":"2.1.1","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2017","cve_id":"1000067","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"modx","cpe5":"revolution","cpe6":"2.1.1","cpe7":"p12","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2017","cve_id":"1000067","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"modx","cpe5":"revolution","cpe6":"2.1.2","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2017","cve_id":"1000067","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"modx","cpe5":"revolution","cpe6":"2.1.3","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2017","cve_id":"1000067","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"modx","cpe5":"revolution","cpe6":"2.1.4","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2017","cve_id":"1000067","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"modx","cpe5":"revolution","cpe6":"2.1.5","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2017","cve_id":"1000067","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"modx","cpe5":"revolution","cpe6":"2.2.0","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2017","cve_id":"1000067","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"modx","cpe5":"revolution","cpe6":"2.2.0","cpe7":"rc1","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2017","cve_id":"1000067","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"modx","cpe5":"revolution","cpe6":"2.2.0","cpe7":"rc2","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2017","cve_id":"1000067","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"modx","cpe5":"revolution","cpe6":"2.2.0","cpe7":"rc3","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2017","cve_id":"1000067","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"modx","cpe5":"revolution","cpe6":"2.2.1","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2017","cve_id":"1000067","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"modx","cpe5":"revolution","cpe6":"2.2.2","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2017","cve_id":"1000067","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"modx","cpe5":"revolution","cpe6":"2.2.3","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2017","cve_id":"1000067","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"modx","cpe5":"revolution","cpe6":"2.2.4","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2017","cve_id":"1000067","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"modx","cpe5":"revolution","cpe6":"2.2.5","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2017","cve_id":"1000067","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"modx","cpe5":"revolution","cpe6":"2.2.6","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2017","cve_id":"1000067","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"modx","cpe5":"revolution","cpe6":"2.2.7","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2017","cve_id":"1000067","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"modx","cpe5":"revolution","cpe6":"2.2.8","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2017","cve_id":"1000067","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"modx","cpe5":"revolution","cpe6":"2.2.9","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2017","cve_id":"1000067","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"modx","cpe5":"revolution","cpe6":"2.3.0","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2017","cve_id":"1000067","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"modx","cpe5":"revolution","cpe6":"2.3.1","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2017","cve_id":"1000067","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"modx","cpe5":"revolution","cpe6":"2.4.0","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2017","cve_id":"1000067","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"modx","cpe5":"revolution","cpe6":"2.4.1","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2017","cve_id":"1000067","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"modx","cpe5":"revolution","cpe6":"2.5.0","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2017","cve_id":"1000067","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"modx","cpe5":"revolution","cpe6":"2.5.1","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2017","cve_id":"1000067","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"modx","cpe5":"revolution","cpe6":"2.5.2","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2017","cve_id":"1000067","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"modx","cpe5":"revolution","cpe6":"2.5.3","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2017","cve_id":"1000067","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"modx","cpe5":"revolution","cpe6":"2.5.4","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2017","cve_id":"1000067","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"modx","cpe5":"revolution","cpe6":"2.5.5","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2017","cve_id":"1000067","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"modx","cpe5":"revolution","cpe6":"2.5.6","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"}],"vendor_comments":[],"enrichments":{"kev":null,"epss":null,"legacy_qids":[]},"source_records":{"cve_program":{"containers":{"adp":[{"providerMetadata":{"dateUpdated":"2024-08-05T21:53:06.137Z","orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE"},"references":[{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"https://github.com/modxcms/revolution/blob/9bf1c6cf7bdc12190b404f93ce7798b39c07bc59/core/xpdo/changelog.txt"}],"title":"CVE Program Container"}],"cna":{"affected":[{"product":"n/a","vendor":"n/a","versions":[{"status":"affected","version":"n/a"}]}],"dateAssigned":"2017-05-06T00:00:00.000Z","datePublic":"2017-07-13T00:00:00.000Z","descriptions":[{"lang":"en","value":"MODX Revolution version 2.x - 2.5.6 is vulnerable to blind SQL injection caused by improper sanitization by the escape method resulting in authenticated user accessing database and possibly escalating privileges."}],"problemTypes":[{"descriptions":[{"description":"n/a","lang":"en","type":"text"}]}],"providerMetadata":{"dateUpdated":"2017-07-13T19:57:01.000Z","orgId":"8254265b-2729-46b6-b9e3-3dfca2d5bfca","shortName":"mitre"},"references":[{"tags":["x_refsource_CONFIRM"],"url":"https://github.com/modxcms/revolution/blob/9bf1c6cf7bdc12190b404f93ce7798b39c07bc59/core/xpdo/changelog.txt"}],"x_legacyV4Record":{"CVE_data_meta":{"ASSIGNER":"cve@mitre.org","DATE_ASSIGNED":"2017-05-06T20:43:28.318287","ID":"CVE-2017-1000067","REQUESTER":"antirais@gmail.com","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"n/a","version":{"version_data":[{"version_value":"n/a"}]}}]},"vendor_name":"n/a"}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"MODX Revolution version 2.x - 2.5.6 is vulnerable to blind SQL injection caused by improper sanitization by the escape method resulting in authenticated user accessing database and possibly escalating privileges."}]},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"n/a"}]}]},"references":{"reference_data":[{"name":"https://github.com/modxcms/revolution/blob/9bf1c6cf7bdc12190b404f93ce7798b39c07bc59/core/xpdo/changelog.txt","refsource":"CONFIRM","url":"https://github.com/modxcms/revolution/blob/9bf1c6cf7bdc12190b404f93ce7798b39c07bc59/core/xpdo/changelog.txt"}]}}}},"cveMetadata":{"assignerOrgId":"8254265b-2729-46b6-b9e3-3dfca2d5bfca","assignerShortName":"mitre","cveId":"CVE-2017-1000067","datePublished":"2017-07-13T20:00:00.000Z","dateReserved":"2017-07-10T00:00:00.000Z","dateUpdated":"2024-08-05T21:53:06.137Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.1"},"nvd":{"publishedDate":"2017-07-17 13:18:18","lastModifiedDate":"2025-04-20 01:37:25","problem_types":["CWE-89","n/a"],"metrics":{"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:P/I:P/A:P","baseScore":6.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":8,"impactScore":6.4,"acInsufInfo":true,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:modx:revolution:2.0.0:*:*:*:*:*:*:*","matchCriteriaId":"CCC01BEC-3376-4C94-9DCA-2C82DE75E810"},{"vulnerable":true,"criteria":"cpe:2.3:a:modx:revolution:2.0.0:rc1:*:*:*:*:*:*","matchCriteriaId":"E13093C8-6D9D-4542-A6AF-2C9FFA59BC0D"},{"vulnerable":true,"criteria":"cpe:2.3:a:modx:revolution:2.0.0:rc2:*:*:*:*:*:*","matchCriteriaId":"5D7F5C6A-33DC-41F2-ACDD-B7358024F9DB"},{"vulnerable":true,"criteria":"cpe:2.3:a:modx:revolution:2.0.0:rc3:*:*:*:*:*:*","matchCriteriaId":"5DC561AA-5730-4D15-88BC-2BAA99FEDD45"},{"vulnerable":true,"criteria":"cpe:2.3:a:modx:revolution:2.0.1:*:*:*:*:*:*:*","matchCriteriaId":"7F00392B-6B2E-455C-AD3C-97D2C8692300"},{"vulnerable":true,"criteria":"cpe:2.3:a:modx:revolution:2.1.0:*:*:*:*:*:*:*","matchCriteriaId":"EB19DC1E-477B-4CB2-88AE-7B693701AB75"},{"vulnerable":true,"criteria":"cpe:2.3:a:modx:revolution:2.1.0:p12:*:*:*:*:*:*","matchCriteriaId":"1DD8E758-588B-4706-B4DA-097009C9829E"},{"vulnerable":true,"criteria":"cpe:2.3:a:modx:revolution:2.1.1:*:*:*:*:*:*:*","matchCriteriaId":"6079B90E-A472-4286-920F-312C003F3BE0"},{"vulnerable":true,"criteria":"cpe:2.3:a:modx:revolution:2.1.1:p12:*:*:*:*:*:*","matchCriteriaId":"CA68C845-CCE6-4036-8DA5-E451F0912943"},{"vulnerable":true,"criteria":"cpe:2.3:a:modx:revolution:2.1.2:*:*:*:*:*:*:*","matchCriteriaId":"BB4D2D85-9A84-456B-9970-0DFB43360F60"},{"vulnerable":true,"criteria":"cpe:2.3:a:modx:revolution:2.1.3:*:*:*:*:*:*:*","matchCriteriaId":"AC0C400F-97FC-4BDA-B583-8E587BD44C7E"},{"vulnerable":true,"criteria":"cpe:2.3:a:modx:revolution:2.1.4:*:*:*:*:*:*:*","matchCriteriaId":"21BC9C96-2F59-4C70-844A-C96BF85ED4B1"},{"vulnerable":true,"criteria":"cpe:2.3:a:modx:revolution:2.1.5:*:*:*:*:*:*:*","matchCriteriaId":"9C085106-26AF-4F3B-A649-84D60687B25D"},{"vulnerable":true,"criteria":"cpe:2.3:a:modx:revolution:2.2.0:*:*:*:*:*:*:*","matchCriteriaId":"4BFDDBE7-77A0-4552-AA01-4D7DD502D731"},{"vulnerable":true,"criteria":"cpe:2.3:a:modx:revolution:2.2.0:rc1:*:*:*:*:*:*","matchCriteriaId":"DA997F7B-23CB-4215-9FDB-441E75C1565E"},{"vulnerable":true,"criteria":"cpe:2.3:a:modx:revolution:2.2.0:rc2:*:*:*:*:*:*","matchCriteriaId":"FDFFDFC0-268C-435D-9A6D-CF96D33F5302"},{"vulnerable":true,"criteria":"cpe:2.3:a:modx:revolution:2.2.0:rc3:*:*:*:*:*:*","matchCriteriaId":"EC36839A-2A85-450C-A7E6-C0D5374832EF"},{"vulnerable":true,"criteria":"cpe:2.3:a:modx:revolution:2.2.1:*:*:*:*:*:*:*","matchCriteriaId":"87591447-499C-4C97-8436-845F2A9006EA"},{"vulnerable":true,"criteria":"cpe:2.3:a:modx:revolution:2.2.2:*:*:*:*:*:*:*","matchCriteriaId":"FA1153BA-7050-40E1-90C9-75071114F153"},{"vulnerable":true,"criteria":"cpe:2.3:a:modx:revolution:2.2.3:*:*:*:*:*:*:*","matchCriteriaId":"997C5948-45E2-4BB6-B12C-EDA839015EEC"},{"vulnerable":true,"criteria":"cpe:2.3:a:modx:revolution:2.2.4:*:*:*:*:*:*:*","matchCriteriaId":"50905CD0-B72A-4AB6-ADA9-1C7353D14917"},{"vulnerable":true,"criteria":"cpe:2.3:a:modx:revolution:2.2.5:*:*:*:*:*:*:*","matchCriteriaId":"BBB51ED9-9683-42A8-ABB6-CC21521DA808"},{"vulnerable":true,"criteria":"cpe:2.3:a:modx:revolution:2.2.6:*:*:*:*:*:*:*","matchCriteriaId":"745972A9-B150-4462-872A-3085E35D929C"},{"vulnerable":true,"criteria":"cpe:2.3:a:modx:revolution:2.2.7:*:*:*:*:*:*:*","matchCriteriaId":"D09F11AE-7719-48ED-BC11-03A7F5DA3A08"},{"vulnerable":true,"criteria":"cpe:2.3:a:modx:revolution:2.2.8:*:*:*:*:*:*:*","matchCriteriaId":"D8CCC7E4-D602-473D-A944-6869747052E5"},{"vulnerable":true,"criteria":"cpe:2.3:a:modx:revolution:2.2.9:*:*:*:*:*:*:*","matchCriteriaId":"F0B57252-10D4-4D0B-B70D-3D138B2D4249"},{"vulnerable":true,"criteria":"cpe:2.3:a:modx:revolution:2.3.0:*:*:*:*:*:*:*","matchCriteriaId":"ACC26BED-7BF3-4D3D-BCFA-497C8DCAF658"},{"vulnerable":true,"criteria":"cpe:2.3:a:modx:revolution:2.3.1:*:*:*:*:*:*:*","matchCriteriaId":"32772FEB-430E-4F96-8B5F-6C786BE3D7BD"},{"vulnerable":true,"criteria":"cpe:2.3:a:modx:revolution:2.4.0:*:*:*:*:*:*:*","matchCriteriaId":"79DB2AA8-3569-42BA-94D6-CEA59916A3A0"},{"vulnerable":true,"criteria":"cpe:2.3:a:modx:revolution:2.4.1:*:*:*:*:*:*:*","matchCriteriaId":"A0501306-7E8F-4AB1-9179-247B0C4B7806"},{"vulnerable":true,"criteria":"cpe:2.3:a:modx:revolution:2.5.0:*:*:*:*:*:*:*","matchCriteriaId":"CFD0D4D8-FC21-40B8-A5D3-454B864FA0FF"},{"vulnerable":true,"criteria":"cpe:2.3:a:modx:revolution:2.5.1:*:*:*:*:*:*:*","matchCriteriaId":"744C0B94-7F15-4C35-9A1C-81A65F45D35C"},{"vulnerable":true,"criteria":"cpe:2.3:a:modx:revolution:2.5.2:*:*:*:*:*:*:*","matchCriteriaId":"382F6AFC-7338-4133-B233-DE1D093340F1"},{"vulnerable":true,"criteria":"cpe:2.3:a:modx:revolution:2.5.3:*:*:*:*:*:*:*","matchCriteriaId":"F328ADB0-F1C0-46F5-9F87-8EB72B285330"},{"vulnerable":true,"criteria":"cpe:2.3:a:modx:revolution:2.5.4:*:*:*:*:*:*:*","matchCriteriaId":"54C40375-1110-4EEB-8120-74D1D23C137F"},{"vulnerable":true,"criteria":"cpe:2.3:a:modx:revolution:2.5.5:*:*:*:*:*:*:*","matchCriteriaId":"FEB7E380-740A-4B2A-8186-CDD2835D65D0"},{"vulnerable":true,"criteria":"cpe:2.3:a:modx:revolution:2.5.6:*:*:*:*:*:*:*","matchCriteriaId":"FE616B3E-1B31-4191-A041-CE4E900A3F86"}]}]}]},"legacy_mitre":{"record":{"CveYear":"2017","CveId":"1000067","Ordinal":"1","Title":"CVE-2017-1000067","CVE":"CVE-2017-1000067","Year":"2017"},"notes":[{"CveYear":"2017","CveId":"1000067","Ordinal":"1","NoteData":"MODX Revolution version 2.x - 2.5.6 is vulnerable to blind SQL injection caused by improper sanitization by the escape method resulting in authenticated user accessing database and possibly escalating privileges.","Type":"Description","Title":"CVE-2017-1000067"},{"CveYear":"2017","CveId":"1000067","Ordinal":"2","NoteData":"2017-07-13","Type":"Other","Title":"Published"},{"CveYear":"2017","CveId":"1000067","Ordinal":"3","NoteData":"2017-07-13","Type":"Other","Title":"Modified"}]}}}