Description
XOOPS Core 2.5.8.1 has XSS due to unescaped HTML output of an Install DB failure error message in page_dbsettings.php.
Remediation
References
Related Vulnerabilities
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-0799)
WordPress Plugin Phoenix Media Rename Security Bypass (3.4.2)
PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-1643)
WordPress 4.5.x Denial of Service Vulnerability (4.5 - 4.5.13)