CVE-2009-4360

2009-12-2002:00:00

mitre

www.cve.org

7.4 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

28.0%

JSON

SQL injection vulnerability in modules/content/index.php in the Content module 0.5 for XOOPS allows remote attackers to inject arbitrary web script or HTML via the id parameter.

References

securityreason.com/exploitalert/7494

www.packetstormsecurity.org/0911-exploits/xoopscontent-sql.txt

www.securityfocus.com/bid/37155

exchange.xforce.ibmcloud.com/vulnerabilities/54489