Lucene search
XoopsXoops
2 matches found
CVE-2017-12138
XOOPS Core 2.5.8 has a stored URL redirect bypass vulnerability in /modules/profile/index.php because of the URL filter.
6.1CVSS6.2AI score0.16831EPSS
CVE-2017-12139
XOOPS Core 2.5.8 has stored XSS in imagemanager.php because of missing MIME type validation in htdocs/class/uploader.php.
6.1CVSS5.9AI score0.00234EPSS