What is the severity of CVE-2014-2311?

CVE-2014-2311 is classified as a high severity SQL injection vulnerability allowing attackers to execute arbitrary SQL commands.

How do I fix CVE-2014-2311?

To fix CVE-2014-2311, upgrade to MODX Revolution version 2.2.13 or later.

What software versions are affected by CVE-2014-2311?

CVE-2014-2311 affects all versions of MODX Revolution prior to 2.2.13.

Can CVE-2014-2311 be exploited remotely?

Yes, CVE-2014-2311 can be exploited remotely by attackers to manipulate the database.

Is it necessary to patch CVE-2014-2311 immediately?

Yes, it is crucial to patch CVE-2014-2311 immediately to prevent potential data breaches.

Vulnerability/
CVE-2014-2311

high

7.5

CWE

11/3/2014

12/4/2025

CVE-2014-2311: SQL Injection

First published: Tue Mar 11 2014(Updated: )

SQL injection vulnerability in modx.class.php in MODX Revolution 2.0.0 before 2.2.13 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
MODx Revolution	=2.0.0
MODx Revolution	=2.0.1
MODx Revolution	=2.0.3
MODx Revolution	=2.0.4
MODx Revolution	=2.0.5
MODx Revolution	=2.0.6
MODx Revolution	=2.0.7
MODx Revolution	=2.0.8
MODx Revolution	=2.1.0
MODx Revolution	=2.1.1
MODx Revolution	=2.1.2
MODx Revolution	=2.1.3
MODx Revolution	=2.1.4
MODx Revolution	=2.1.5
MODx Revolution	=2.2.0
MODx Revolution	=2.2.1
MODx Revolution	=2.2.2
MODx Revolution	=2.2.3
MODx Revolution	=2.2.4
MODx Revolution	=2.2.5
MODx Revolution	=2.2.6
MODx Revolution	=2.2.7
MODx Revolution	=2.2.8
MODx Revolution	=2.2.9
MODx Revolution	=2.2.10
MODx Revolution	=2.2.11
MODx Revolution	=2.2.12
	=2.0.0
	=2.0.1
	=2.0.3
	=2.0.4
	=2.0.5
	=2.0.6
	=2.0.7
	=2.0.8
	=2.1.0
	=2.1.1
	=2.1.2
	=2.1.3
	=2.1.4
	=2.1.5
	=2.2.0
	=2.2.1
	=2.2.2
	=2.2.3
	=2.2.4
	=2.2.5
	=2.2.6
	=2.2.7
	=2.2.8
	=2.2.9
	=2.2.10
	=2.2.11
	=2.2.12

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2014-2311?
CVE-2014-2311 is classified as a high severity SQL injection vulnerability allowing attackers to execute arbitrary SQL commands.
How do I fix CVE-2014-2311?
To fix CVE-2014-2311, upgrade to MODX Revolution version 2.2.13 or later.
What software versions are affected by CVE-2014-2311?
CVE-2014-2311 affects all versions of MODX Revolution prior to 2.2.13.
Can CVE-2014-2311 be exploited remotely?
Yes, CVE-2014-2311 can be exploited remotely by attackers to manipulate the database.
Is it necessary to patch CVE-2014-2311 immediately?
Yes, it is crucial to patch CVE-2014-2311 immediately to prevent potential data breaches.

agent/type
collector/mitre-cve
source/MITRE
agent/author
agent/references
agent/severity
agent/first-publish-date
agent/description
collector/nvd-index
agent/software-canonical-lookup-request
agent/weakness
collector/nvd-api
source/NVD
agent/software-canonical-lookup
agent/last-modified-date
agent/source
agent/softwarecombine
agent/tags
agent/event
vendor/modx
canonical/modx revolution
version/modx revolution/2.0.0
version/modx revolution/2.0.1
version/modx revolution/2.0.3
version/modx revolution/2.0.4
version/modx revolution/2.0.5
version/modx revolution/2.0.6
version/modx revolution/2.0.7
version/modx revolution/2.0.8
version/modx revolution/2.1.0
version/modx revolution/2.1.1
version/modx revolution/2.1.2
version/modx revolution/2.1.3
version/modx revolution/2.1.4
version/modx revolution/2.1.5
version/modx revolution/2.2.0
version/modx revolution/2.2.1
version/modx revolution/2.2.2
version/modx revolution/2.2.3
version/modx revolution/2.2.4
version/modx revolution/2.2.5
version/modx revolution/2.2.6
version/modx revolution/2.2.7
version/modx revolution/2.2.8
version/modx revolution/2.2.9
version/modx revolution/2.2.10
version/modx revolution/2.2.11
version/modx revolution/2.2.12