CVE-2008-3560
The CVE-2008-3560 entry describes a Cross-site scripting (XSS) flaw in the Kshop module 2.22 for Xoops, exploitable via the search parameter in kshop_search.php. Affected component: kshop_search.php (Kshop 2.22 for Xoops). Root cause: input not properly sanitized, enabling injection of arbitrary ...