CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Xoops: >> Xoops Pool Module Security Vulnerabilities

CVE-2006-0198

Cross-site scripting (XSS) vulnerability in a certain module, possibly poll or Pool, for XOOPS allows remote attackers to inject arbitrary web script or HTML via JavaScript in the SRC attribute of an IMG element in a comment.

CVSS Score

4.3

EPSS Score

0.004

Published

2006-01-13

Page 1

Vulnerabilities

Vulnerable Software

Xoops: >> Xoops Pool Module Security Vulnerabilities

Products

Pricing

Contact Us