Description

SQL injection vulnerability in rmgs/images.php in the RMSOFT Gallery System 2.0 module for XOOPS allows remote attackers to execute arbitrary SQL commands via the id parameter.

Remediation

References

CVE-2008-0611

Related Vulnerabilities

WordPress Plugin WordPress Download Manager Cross-Site Request Forgery (2.9.60)

WordPress Plugin WP Gravity Forms Insightly Cross-Site Scripting (1.0.6)

Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2021-43559)

Hesk Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-13897)

e107 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-11734)

Severity

High

Classification

CVE-2008-0611 CWE-138

Tags

Missing Update Known Vulnerabilities