Description
XOOPS Core 2.5.8 has a stored URL redirect bypass vulnerability in /modules/profile/index.php because of the URL filter.
Remediation
References
Related Vulnerabilities
MySQL CVE-2021-35624 Vulnerability (CVE-2021-35624)
Apache HTTP Server Other Vulnerability (CVE-2004-0173)
Oracle Database Server CVE-2009-1015 Vulnerability (CVE-2009-1015)
WordPress Plugin Visual CSS Style Editor Cross-Site Request Forgery (7.2.0)
CubeCart Improper Input Validation Vulnerability (CVE-2013-1465)