CVE-2005-2338 in XOOPSinfo

Summary

Multiple cross-site scripting (XSS) vulnerabilities in XOOPS 2.0.12 JP and earlier, XOOPS 2.0.13.1 and earlier, and 2.2.x up to 2.2.3 RC1 allow remote attackers to inject arbitrary web script or HTML via (1) modules that use "XOOPS Code" and (2) newbb in the forum module.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Reservation

07/21/2005

Disclosure

10/26/2005

Moderation

VulDB entry created

Entries

VDB-26668 (1)

CPE

ready

CWE

CWE-80 (Confirmed)

CVSS

4.3

EPSS

0.01296

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2005-2338
NVD	https://nvd.nist.gov/vuln/detail/CVE-2005-2338
CVE Details	https://www.cvedetails.com/cve/CVE-2005-2338/

◂ Previous Overview Next ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!