2 matches found
CVE-2008-4435
Multiple cross-site scripting XSS vulnerabilities in the RMSOFT Downloads Plus rmdp module 1.5 and 1.7 for Xoops allow remote attackers to inject arbitrary web script or HTML via the 1 key parameter to search.php and the 2 id parameter to down.php...
CVE-2008-4435
CVE-2008-4435 affects RMSOFT Downloads Plus (rmdp) module for Xoops (versions 1.5 and 1.7). The vulnerability is a cross-site scripting (XSS) flaw that allows remote attackers to inject arbitrary web script or HTML via the key parameter to search.php or the id parameter to down.php. The available...