Vulnerabilities > Xoops > XM Memberstats > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2008-02-28 | CVE-2008-1063 | Cross-Site Scripting vulnerability in Xoops Xm-Memberstats 2.0 Cross-site scripting (XSS) vulnerability index.php in the XM-Memberstats (xmmemberstats) module for XOOPS allows remote attackers to inject arbitrary web script or HTML via the sortby parameter. | 4.3 |