Description
Cross-site scripting (XSS) vulnerability in viewtopic.php in Xoops 2.x, possibly 2 through 2.0.5, allows remote attackers to inject arbitrary web script or HTML via the (1) forum and (2) topic_id parameters.
Remediation
References
Related Vulnerabilities
Magento Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2019-7852)
WordPress Plugin MP3-jPlayer Information Disclosure (2.3.2)
WordPress Plugin Aspose Importer & Exporter Arbitrary File Download (2.0)
Oracle Application Server Other Vulnerability (CVE-2007-0284)
WordPress Plugin RSS Post Importer Cross-Site Scripting (2.2.1)