RSS   Vulnerabilities for 'Xoops popnupblog'   RSS

2007-04-11
 
CVE-2007-1979

 

 
SQL injection vulnerability in index.php in the PopnupBlog 2.52 and earlier module for Xoops allows remote attackers to execute arbitrary SQL commands via the postid parameter, possibly involving the get_blogid_from_postid function in class/PopnupBlogUtils.php. NOTE: later versions such as 3.03 and 3.05 might also be affected.

 

 >>> Vendor: Xoops 44 Products
Xoops
Uploader
Wf-downloads
Xoops pool module
Xoops glossaire module
Xoops rmsoft gallery system
Core module
Library module
Tutoriais module
Friendfinder module
Malaika system myads module
Repository module
Rha7 downloads module
Wf-snippets
Happy linux xfsection module
Zmagazine module
Xoops virii info module
Xoops popnupblog
John mordo jobs module
Flashgames module
Wfquotes module
Myconference module
Icontent module
Cjay content module
Xt-conteudo module
Xfsection module
Horoscope module
Tinycontent module
Wiwimod module
Articles module
Mylinks module
Xoopsgallery module
Mytopics
Eempregos module
Prayer list module
Tiny event module
Xm-memberstats
Xm memberstats
Xoops cube
Article module
Kshop module
Makale
Xoops dictionary
Glossaire module


Copyright 2024, cxsecurity.com

 

Back to Top