CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Multiple cross-site scripting XSS vulnerabilities in XOOPS 2.3.3 allow remote attackers to inject arbitrary web script or HTML via the 1 op parameter to modules/pm/viewpmsg.php and 2 query string to modules/profile/user.php...

4.3CVSS6AI score0.07274EPSS

Exploits1References1

RedhatCVE•added 2025/05/21 7:7 p.m.•4 views

CVE-2007-6380

Multiple SQL injection vulnerabilities in e-Xoops exoops 1.08, and 1.05 Rev 1 through 3, allow remote attackers to execute arbitrary SQL commands via the 1 lid parameter to a mylinks/ratelink.php, b adresses/ratefile.php, c mydownloads/ratefile.php, d mysections/ratefile.php, and e...

7.5CVSS8.8AI score0.00755EPSS

Exploits2References1

Cvelist•added 2009/11/17 6:0 p.m.•27 views

CVE-2009-3963

Multiple unspecified vulnerabilities in XOOPS before 2.4.0 Final have unknown impact and attack vectors...

6.8AI score0.0036EPSS

Exploits0References4

Tenable Nessus•added 2005/11/14 12:0 a.m.•19 views

Xoops < 2.2.4 Multiple Vulnerabilities

Binary data 3293.prm...

7.5CVSS7.3AI score0.00678EPSS

Exploits2References3

securityvulns•added 2005/03/31 12:0 a.m.•22 views

Multiple Sql injection, and multiple XSS vulnerabilities in Easy Community Management System Forum (E-XOOPS)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Dcrab 's Security Advisory http://icis.digitalparadox.org/dcrab http://www.hackerscenter.com/ Severity: High Title: Multiple Sql injection, and multiple XSS vulnerabilities in Easy Community Management System Forum E-XOOPS Date: March 28, 2005 Summary...

6.5AI score

Exploits0

NVD•added 2004/08/28 4:0 a.m.•8 views

CVE-2004-1640

Multiple cross-site scripting XSS vulnerabilities in XOOPS 0.94 and 1.0 allow remote attackers to execute arbitrary web script and HTML via the 1 terme parameter to search.php or 2 letter parameter to letter.php...

4.3CVSS6.1AI score0.01111EPSS

Exploits1References8

exploitpack•added 2003/12/06 12:0 a.m.•11 views

Xoops 1.3.x2.0.x - Multiple Vulnerabilities

Xoops 1.3.x2.0.x - Multiple Vulnerabilities source: https://www.securityfocus.com/bid/9166/info Multiple vulnerabilities were reported in Xoops. These issues include SQL injection and input validation issues that will allow remote attackers to manipulate banners and local variables. Exploitation...

0.4AI score

Exploits0

Exploit DB•added 2003/12/06 12:0 a.m.•18 views

Xoops 1.3.x/2.0.x - Multiple Vulnerabilities

source: https://www.securityfocus.com/bid/9166/info Multiple vulnerabilities were reported in Xoops. These issues include SQL injection and input validation issues that will allow remote attackers to manipulate banners and local variables. Exploitation could compromise the software or have other...

7.4AI score

Exploits0

Tenable Nessus•added 2003/03/22 12:0 a.m.•42 views

XOOPS 1.0 RC1 Multiple Vulnerabilities

The version of XOOPS installed on the remote host is affected by SQL injection, cross-site scripting, and information disclosure. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. Ref : Date: 20 Mar 2003 19:58:55 -0000 From: "Gregory" Le Bras To: [email protected] Subject: SCSA-011 Pat...

7.5CVSS5.2AI score0.01288EPSS

Exploits4References6

Cvelist•added 2002/05/03 4:0 a.m.•21 views

CVE-2002-0217

Cross-site scripting CSS vulnerabilities in the Private Message System for XOOPS 1.0 RC1 allow remote attackers to execute Javascript on other web clients via 1 the Title field or a Private Message Box or 2 the image field parameter in pmlite.php...

6.9AI score0.01288EPSS

Exploits2References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by