CVE-2005-2338
XOOPS XSS vulnerabilities (CVE-2005-2338) affect XOOPS 2.0.12 JP and earlier, 2.0.13.1 and earlier, and 2.2.x up to 2.2.3 RC1. The issues enable remote attackers to inject arbitrary web script or HTML via (1) modules that use the XOOPS Code and (2) the newbb forum module. Root cause is cross-site...