Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xoops vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-1814
SQL injection vulnerability in viewcat.php in the Core module for Xoops allows remote malicious users to execute arbitrary SQL commands via the cid parameter, a different vector than CVE-2007-0377.
Xoops Core Module
1 EDB exploit
NA
CVE-2007-1815
SQL injection vulnerability in viewcat.php in the Library module for Xoops allows remote malicious users to execute arbitrary SQL commands via the cid parameter.
Xoops Library Module
1 EDB exploit
NA
CVE-2007-1838
SQL injection vulnerability in view.php in the Friendfinder 3.3 and previous versions module for Xoops allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Xoops Friendfinder Module
1 EDB exploit
NA
CVE-2008-5321
SQL injection vulnerability in index.php in GesGaleri, a module for XOOPS, allows remote malicious users to execute arbitrary SQL commands via the no parameter.
Xoops Hocasi Gesgaleri Nil
1 EDB exploit
NA
CVE-2014-3935
SQL injection vulnerability in glossaire-aff.php in the Glossaire module 1.0 for XOOPS allows remote malicious users to execute arbitrary SQL commands via the lettre parameter.
Xoops Glossaire Module 1.0
1 EDB exploit
NA
CVE-2008-1063
Cross-site scripting (XSS) vulnerability index.php in the XM-Memberstats (xmmemberstats) module for XOOPS allows remote malicious users to inject arbitrary web script or HTML via the sortby parameter.
Xoops Xm-memberstats 2.0
NA
CVE-2008-1351
SQL injection vulnerability in the Tutorials 2.1b module for XOOPS allows remote malicious users to execute arbitrary SQL commands via the tid parameter to printpage.php, which is accessible directly or through a printpage action to index.php.
Xoops Tutoriais Module 2.1b
1 EDB exploit
NA
CVE-2008-1065
Multiple SQL injection vulnerabilities in index.php in the XM-Memberstats (xmmemberstats) 2.0e module for XOOPS allow remote malicious users to execute arbitrary SQL commands via the (1) letter or (2) sortby parameter. NOTE: the provenance of this information is unknown; the deta...
Xoops Xm Memberstats 2.0e
NA
CVE-2007-3289
PHP remote file inclusion vulnerability in spaw/spaw_control.class.php in the WiwiMod 0.4 module for XOOPS allows remote malicious users to execute arbitrary PHP code via a URL in the spaw_root parameter. NOTE: this issue is probably a duplicate of CVE-2006-4656.
Xoops Wiwimod Module 0.4
1 EDB exploit
NA
CVE-2007-2737
SQL injection vulnerability in index.php in the MyConference 1.0 module for Xoops allows remote malicious users to execute arbitrary SQL commands via the cid parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party informati...
Xoops Myconference Module 1.0
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »