Vulnerabilities > Xoops > Xoops Glossaire Module
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-05-17 | CVE-2007-2738 | SQL Injection vulnerability in XOOPS Module Glossarie Glossaire-P-F.PHP SQL injection vulnerability in glossaire-p-f.php in the Glossaire 1.7 and earlier module for Xoops allows remote attackers to execute arbitrary SQL commands via the sid parameter in an ImprDef action. | 7.5 |
2006-07-06 | CVE-2006-3363 | Remote File Include vulnerability in Xoops Glossaire Module 1.7 PHP remote file inclusion vulnerability in index.php in the Glossaire module 1.7 for Xoops allows remote attackers to execute arbitrary PHP code via a URL in the pa parameter. | 5.1 |