Cross-site scripting (XSS) vulnerability in images.php in the Red Mexico RMSOFT Gallery System (GS) 2.0 module (aka rmgs) for XOOPS allows remote attackers to inject arbitrary web script or HTML via the q parameter.
References
Configurations
History
21 Nov 2024, 00:43
Type | Values Removed | Values Added |
---|---|---|
References | () http://www.xssing.com/index.php?x=3&y=12 - Exploit | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/41013 - |
Information
Published : 2008-02-28 20:44
Updated : 2024-11-21 00:43
NVD link : CVE-2008-1064
Mitre link : CVE-2008-1064
CVE.ORG link : CVE-2008-1064
JSON object : View
Products Affected
xoops
- xoops_rmsoft_gallery_system
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')