Multiple cross-site scripting (XSS) vulnerabilities in XOOPS 0.94 and 1.0 allow remote malicious users to execute arbitrary web script and HTML via the (1) terme parameter to search.php or (2) letter parameter to letter.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|