2 matches found
CVE-2004-1640
The CVE-2004-1640 entry describes multiple cross-site scripting (XSS) vulnerabilities in XOOPS versions 0.94 and 1.0, exploitable via user-supplied input in two scripts: the terme parameter to search.php and the letter parameter to letter.php. The underlying issue is improper handling/sanitizatio...
CVE-2004-1640
Multiple cross-site scripting XSS vulnerabilities in XOOPS 0.94 and 1.0 allow remote attackers to execute arbitrary web script and HTML via the 1 terme parameter to search.php or 2 letter parameter to letter.php...