CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2009-2773

Malware in sbrugna...

4.3CVSS6.4AI score0.07274EPSS

Exploits1References9

Prion•added 2009/08/17 4:30 p.m.•14 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in XOOPS 2.3.3 allow remote attackers to inject arbitrary web script or HTML via the 1 op parameter to modules/pm/viewpmsg.php and 2 query string to modules/profile/user.php...

4.3CVSS6.1AI score0.07274EPSS

Exploits1References8Affected Software1

CVE•added 2009/08/17 4:0 p.m.•42 views

CVE-2009-2783

XOOPS 2.3.3 is affected by multiple XSS vulnerabilities. The flaw involves unsanitized input in the op parameter of modules/pm/viewpmsg.php and in the query string of modules/profile/user.php, allowing remote attackers to inject arbitrary script/HTML. Impact is user/browser-level content manipula...

4.3CVSS5.9AI score0.07274EPSS

Exploits1References8Affected Software1

Exploit DB•added 2009/06/30 12:0 a.m.•35 views

XOOPS 2.3.3 - 'op' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/35895/info XOOPS is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

7.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by