Description

Cross-site scripting (XSS) vulnerability in modules/wfdownloads/newlist.php in XOOPS 1.0 allows remote attackers to inject arbitrary web script or HTML via the newdownloadshowdays parameter.

Remediation

References

CVE-2006-5810

Related Vulnerabilities

Joomla Other Vulnerability (CVE-2006-0303)

WordPress Plugin Caldera Forms-More Than Contact Forms Cross-Site Scripting (1.4.1)

WordPress Plugin Image Photo Gallery Final Tiles Grid Cross-Site Scripting (3.4.18)

Nginx Use After Free Vulnerability (CVE-2012-1180)

Jenkins Missing Authorization Vulnerability (CVE-2021-21687)

Severity

Medium

Classification

CVE-2006-5810

Tags

Missing Update Known Vulnerabilities