CVE-2011-4565

🗓️ 28 Nov 2011 21:55:09Reported by [email protected]Type

XSS vulnerabilities in XOOPS 2.5.1.a, allowing remote attackers to inject arbitrary web script or HTML via text parameter to include/formdhtmltextarea_preview.php or img BBCODE tag within the message parameter to pmlite.ph

Reporter	Title	Published	Views	Family All 6
CVE	CVE-2011-4565	28 Nov 201121:00	–	cve
Cvelist	CVE-2011-4565	28 Nov 201121:00	–	cvelist
EUVD	EUVD-2011-4491	7 Oct 202500:30	–	euvd
htbridge	Cross-site Scripting (XSS) Vulnerabilities in XOOPS	24 Aug 201100:00	–	htbridge
OpenVAS	XOOPS 'text' and 'message' Parameter Cross-Site Scripting Vulnerabilities	5 Dec 201100:00	–	openvas
Prion	Cross site scripting	28 Nov 201121:55	–	prion

NVD

Node

xoops xoopsRange≤2.5.1.a

xoops xoopsMatch2.0.2

xoops xoopsMatch2.0.13.2

xoops xoopsMatch2.0.14

xoops xoopsMatch2.0.14rc1

xoops xoopsMatch2.0.15

xoops xoopsMatch2.0.16

xoops xoopsMatch2.0.17

xoops xoopsMatch2.0.17.1

xoops xoopsMatch2.0.17.1rc

xoops xoopsMatch2.0.17.1rc2

xoops xoopsMatch2.0.18

xoops xoopsMatch2.0.18rc

xoops xoopsMatch2.0.18.1

xoops xoopsMatch2.0.18.1rc

xoops xoopsMatch2.0.18.2

xoops xoopsMatch2.3.0

xoops xoopsMatch2.3.1

xoops xoopsMatch2.3.2a

xoops xoopsMatch2.3.2b

xoops xoopsMatch2.3.3

xoops xoopsMatch2.3.3b

xoops xoopsMatch2.4.0

xoops xoopsMatch2.4.1

xoops xoopsMatch2.4.2

xoops xoopsMatch2.4.3

xoops xoopsMatch2.4.4

xoops xoopsMatch2.4.5

xoops xoopsMatch2.5.0

xoops xoopsMatch2.5.1

Source	Link
xoops	www.xoops.org/modules/news/article.php
secunia	www.secunia.com/advisories/46238
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/70378
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/70377
htbridge	www.htbridge.ch/advisory/multiple_xss_in_xoops_web_application_platform.html
securityfocus	www.securityfocus.com/bid/49995

29 Apr 2026 01:13Current

5.9Medium risk

Vulners AI Score5.9

CVSS 24.3

EPSS0.00475

CWE-79