Description
Cross-site scripting (XSS) vulnerability in search.php in the RMSOFT MiniShop module 1.0 for Xoops allows remote attackers to inject arbitrary web script or HTML via the itemsxpag parameter.
Remediation
References
Related Vulnerabilities
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-5480)
Ruby CVE-2018-16396 Vulnerability (CVE-2018-16396)
WordPress Plugin Reusable Blocks Extended Cross-Site Request Forgery (0.9)
WordPress Plugin Media Library Categories Multiple Cross-Site Scripting Vulnerabilities (1.1.1)
Jenkins Missing Release of Resource after Effective Lifetime Vulnerability (CVE-2018-1999043)