xoops celepar module qas (bsql/xss) Multiple Vulnerabilities

No description provided by source. -----------------------------I AM MUSLIM !!------------------------------ ============================================================================== / \ | | | | / \ | | | | / \ | | | | / \ | || | / \ | | | | / \ | | IN THE NAME OF // \ || || // \ || ||...

WF-Quote 1.0 Xoops Module Index.PHP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/23845/info The WF-Quote module for the Xoops CMS is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow a...

XOOPS Module icontent 1.0/4.5 - Remote File Inclusion Exploit

No description provided by source. html head meta http-equiv=Content-Type content=text/html; charset=windows-1254 titleXOOPS Module icontent v.1.0 Remote File Inclusion Exploit/title script language=JavaScript...

bcoos 1.0.10 (lfi / SQL Injection) Multiple Vulnerabilities

No description provided by source. WwW.BugReport.ir AmnPardaz Security Research & Penetration Testing Group Title: Bcoos Multiple Vulnerabilities Vendor: http://www.bcoos.net/ Bugs: Local File Inclusion, Sql Injection Vulnerable Version: bcoos 1.0.10 prior versions also may be affected...

XOOPS 2.3.1 - Multiple Local File Inclusion Vulnerabilities

No description provided by source. Digital Security Research Group DSecRG Advisory DSECRG-08-040 Application: XOOPS Versions Affected: 2.3.1 Vendor URL: http://www.xoops.org/ Bug: Multiple Local File Include Exploits: YES Reported: 10.11.2008 Vendor response: 10.11.2008 Solution: YES Date of Publ...

tadbook2 Module for XOOPS 'open_book.php' SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/33196/info The tadbook2 module for XOOPS is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attack...

xoops module tinycontent 1.5 - Remote File Inclusion Vulnerability

No description provided by source. XOOPS Module TinyContent Remote File Inclusion version: 1.5 source: http://prdownloads.sourceforge.net/xoops/xoops2-mod-tinycontent15.zip Discovered by SpLo1T from hTTP://hacking.3Xforum.Ro BUG:...

xoops module cjay content 3 - Remote File Inclusion Vulnerability

No description provided by source. / \ / \ | | | | | | | | | | | / | | | | | | | ' / | | ' \ / \ | | | | || | || | | | \ | | | | / | , |/ /|| ||| |||| / | |/ INFO: Program Title Cjay Content 3 WYSIWYG IE 5.5+ Remote File Inclusion Vulnerability Description Editor module for XOOPS CMS Vuln...

DevTracker Module For bcoos 1.1.11 and E-xoops 1.0.8 Multiple Cross-Site Scripting Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/27619/info DevTracker module for bcoos and E-xoops is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute...

xoops module horoscope <= 2.0 - Remote File Inclusion Vulnerability

No description provided by source. BeyazKurt - [email protected] XOOPS Modules Horoscope http://www.xoops.org/modules/repository/visit.php?cid=32&lid=1162 modules/horoscope/footer.php?xoopsConfigrootpath= NetLife Since : '2003-4' Emekli Heykır BeyazKurt - Neti bıraktım! Dönüşüm mükemmel olcak...

MAXdev My eGallery Module 3.04 - For Xoops 'gid' Parameter SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/28220/info MAXdev My eGallery module for Xoops is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an...

Yogurt Social Network 3.2 rc1 Module for XOOPS album.php uid Parameter XSS

No description provided by source...

xoops module wiwimod 0.4 - Remote File Inclusion Vulnerability

No description provided by source. XOOPS Module WiwiMod v0.4 spawroot RFI Vulnerability D.Script: http://codigolivre.org.br/frs/download.php/1745/xoops2-modwiwimod0.4xavierjimenez.zip V.Code : include $spawroot.'config/spawcontrol.config.php'; include $spawroot.'class/toolbars.class.php'; include...

E-Xoops 1.0.5/1.0.8 mylinks/ratelink.php lid Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/26796/info E-Xoops is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to...

E-Xoops 1.0.5/1.0.8 mydownloads/ratefile.php lid Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/26796/info E-Xoops is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to...

E-Xoops 1.0.5/1.0.8 mysections/ratefile.php lid Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/26796/info E-Xoops is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to...

XOOPS 2.0.14 Article Module - 'article.php' SQL Injection Vulnerability

No description provided by source. !/usr/bin/env python coding: utf-8 from pocsuite.net import req from pocsuite.poc import POCBase, Output from pocsuite.utils import register import re class TestPOCPOCBase: vulID = '84999' ssvid version = '1.0' author = 'kikay' vulDate = '2008-05-06' createDate ...

Xoops 2.0.5 NewList.PHP Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/20927/info Xoops is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code execute in the browser of an...

Xoops Pool Module IMG Tag HTML Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/16189/info The XOOPS Pool Module is prone to an HTML injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in dynamically generated content...

Xoops 2.0.x Viewtopic.php Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/9497/info It has been reported that Xoops may be prone to a cross-site scripting vulnerability that may allow a remote user to execute HTML or script code in a user's browser. HTML and script code may be parsed via the...