Description

SQL injection vulnerability in search.php in the RMSOFT MiniShop module 1.0 for Xoops might allow remote attackers to execute arbitrary SQL commands via the itemsxpag parameter.

Remediation

References

CVE-2008-4433

Related Vulnerabilities

MySQL CVE-2015-2620 Vulnerability (CVE-2015-2620)

WordPress Plugin WP Advanced Importer Cross-Site Scripting (2.1.1)

OpenSSL Resource Management Errors Vulnerability (CVE-2011-4109)

WordPress Plugin AnyVar Cross-Site Scripting (0.1.1)

WordPress 5.6.x Multiple Vulnerabilities (5.6 - 5.6.9)

Severity

High

Classification

CVE-2008-4433 CWE-138

Tags

Missing Update Known Vulnerabilities