CVE-2018-16638

NONE EPSS 42.9%
Published Dec 28, 20187y ago · Modified Jun 17, 20262w ago
Find Similar
Published Dec 28, 2018 7y ago
Last Modified Jun 17, 2026 2w ago

Description

Evolution CMS 1.4.x allows XSS via the manager/ search parameter.

Threat Intelligence

EPSS Exploit Probability
42.9% percentile
Exploit & Patch Status
Public Exploit Known
No Patch Available

Weaknesses 1

CWE-79 Cross-site Scripting Injection

Affected Products 1

VendorProductVersionRange
modxevolution_cms*≥1.4.0  –  ≤1.4.7

References 1

  • github.com https://github.com/security-breachlock/CVE-2018-16638/blob/master/evolution_xss_reflected.pdf
    ExploitThird Party Advisory

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.