CVE-2008-1064

Cross-site scripting (XSS) vulnerability in images.php in the Red Mexico RMSOFT Gallery System (GS) 2.0 module (aka rmgs) for XOOPS allows remote attackers to inject arbitrary web script or HTML via the q parameter.
Configurations

Configuration 1 (hide)

cpe:2.3:a:xoops:xoops_rmsoft_gallery_system:2.0:*:*:*:*:*:*:*

History

21 Nov 2024, 00:43

Type Values Removed Values Added
References () http://www.xssing.com/index.php?x=3&y=12 - Exploit () http://www.xssing.com/index.php?x=3&y=12 - Exploit
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/41013 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/41013 -

Information

Published : 2008-02-28 20:44

Updated : 2024-11-21 00:43


NVD link : CVE-2008-1064

Mitre link : CVE-2008-1064

CVE.ORG link : CVE-2008-1064


JSON object : View

Products Affected

xoops

  • xoops_rmsoft_gallery_system
CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')