Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xoops xoops 2.0 vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2008-2035
Cross-site scripting (XSS) vulnerability in the Bluemoon, Inc. (1) BackPack 0.91 and previous versions, (2) BmSurvey 0.84 and previous versions, (3) newbb_fileup 1.83 and previous versions, (4) News_embed (news_fileup) 1.44 and previous versions, and (5) PopnupBlog 3.19 and previ...
Xoops Xoops Cube 2.1
Bluemoon Popnupblog
Bluemoon Newbb Fileup
Bluemoon Backpack
Bluemoon News Fileup
Xoops Xoops 2.0
Bluemoon Bmsurvey
505
VMScore
CVE-2003-1550
XOOPS 2.0, and possibly earlier versions, allows remote malicious users to obtain sensitive information via an invalid xoopsOption parameter, which reveals the installation path in an error message.
Xoops Xoops
1 EDB exploit
383
VMScore
CVE-2008-1063
Cross-site scripting (XSS) vulnerability index.php in the XM-Memberstats (xmmemberstats) module for XOOPS allows remote malicious users to inject arbitrary web script or HTML via the sortby parameter.
Xoops Xm-memberstats 2.0
755
VMScore
CVE-2007-3236
PHP remote file inclusion vulnerability in footer.php in the Horoscope 1.0 module for XOOPS allows remote malicious users to execute arbitrary PHP code via a URL in the xoopsConfig[root_path] parameter.
Xoops Horoscope Module 1.0
1 EDB exploit
755
VMScore
CVE-2007-1807
SQL injection vulnerability in modules/myalbum/viewcat.php in the myAlbum-P 2.0 and previous versions module for Xoops allows remote malicious users to execute arbitrary SQL commands via the cid parameter.
Peak Xoops Myalbum P
1 EDB exploit
668
VMScore
CVE-2003-0491
The Tutorials 2.0 module in XOOPS and E-XOOPS allows remote malicious users to execute arbitrary code by uploading a PHP file without a MIME image type, then directly accessing the uploaded file.
Mytutorials Tutorials 2.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30065
CVE-2024-5843
CVE-2024-30080
code execution
CVE-2024-4577
CVE-2024-26169
wireless
remote code execution
CVE-2024-36103
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2