Xoops SQL fragment disclosure and SQL injection vulnerability

-- Xoops SQL fragment disclose and SQL injection vulnerability -- Discovered on 27/01/2002 Vendor: http://xoops.sourceforge.net -- Overview -- XOOPS is an open source portal script written extensively in object-oriented PHP. Backed with MySQL Database. There is 2 security issues : - Xoops disclos...