CVE-2009-4360

SQL injection vulnerability in modules/content/index.php in the Content module 0.5 for XOOPS allows remote attackers to inject arbitrary web script or HTML via the id parameter.

Date published : 2009-12-19

http://www.securityfocus.com/bid/37155

http://securityreason.com/exploitalert/7494