Description

SQL injection vulnerability in index.php of WebChat 1.5 included in XOOPS 1.0 allows remote attackers to execute arbitrary SQL commands via the roomid parameter.

Remediation

References

CVE-2002-2391

Related Vulnerabilities

MySQL Other Vulnerability (CVE-2004-0835)

WordPress Plugin Adminer Multiple Cross-Site Scripting Vulnerabilities (1.4.3)

WordPress Plugin Subscriptions & Memberships for PayPal Cross-Site Scripting (1.1.2)

MongoDb Other Vulnerability (CVE-2019-20923)

Oracle Application Server CVE-2008-7233 Vulnerability (CVE-2008-7233)

Severity

High

Classification

CVE-2002-2391 CWE-138

Tags

Missing Update Known Vulnerabilities