Security Reports

Submit a Security Report

If you’ve found a vulnerability or security issue in MODX CMS or one of our web properties, please use the form below to responsibly disclose as follows:

• Select the website or product that this report applies to
• Create separate reports for each issue or site
• If you have attachments to send us, you may submit those after we respond

MODX, MODX Cloud Websites or MODX CMS

Security reports for MODX and MODX Cloud web properties will be handled via our support and enginering teams. Security reports for MODX Revolution CMS will notifiy the team for the open source project.

A Note on MODX Evolution

MODX Evolution is now an independent project renamed Evolution CMS. Security reports may be made on the Evo.im website.

Bug Bounty?

We do not currently have a bug bounty program. Each report is handled on a case-by-case basis.

Your Name (Required)

Your Email (Required)

Affected Property or Product (Required) Select a Property MODX.com (or any of it’s subdomains) MODXCloud.com (or any of it’s subdomains) MODX Revolution CMS

Project Title

Description of Vulnerability or Issue (Required) Describe the vulnerablity or issue in as much detail as possible. The more information you provide the more quickly we can resolve the issue.

We use the information you provide in this form solely to assist you with your submission. You may review our Privacy Policy and MODX Website Terms of Service for more information.

Get our Newsletter

You wish to receive MODX news and marketing from us. You may unsubscribe at any time. Review our privacy policy for complete details.