RSS   Vulnerabilities for 'Minishop module'   RSS

2008-10-03
 
CVE-2008-4433

CWE-89
 

 
SQL injection vulnerability in search.php in the RMSOFT MiniShop module 1.0 for Xoops might allow remote attackers to execute arbitrary SQL commands via the itemsxpag parameter.

 
 
CVE-2008-4432

CWE-79
 

 
Cross-site scripting (XSS) vulnerability in search.php in the RMSOFT MiniShop module 1.0 for Xoops allows remote attackers to inject arbitrary web script or HTML via the itemsxpag parameter.

 

 >>> Vendor: Rmsoft 3 Products
Gallery system
Minishop module
Downloads plus module


Copyright 2024, cxsecurity.com

 

Back to Top