Vulnerabilities (CVE)

Filtered by vendor Xoops Subscribe
Filtered by product Xoops Pool Module
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2006-0198 1 Xoops 1 Xoops Pool Module 2024-11-21 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in a certain module, possibly poll or Pool, for XOOPS allows remote attackers to inject arbitrary web script or HTML via JavaScript in the SRC attribute of an IMG element in a comment.