XOOPS CMS SQL injection vulnerability
- Date Published:2019-05-13
- Last Updated:2019-05-14
- Version Affected: 2.5.9
XOOPS CMS has SQL injection vulnerability, the attacker through the SQL command inserted into the Web form submission or input domain name or page request query string, and eventually achieve to cheat the server to execute malicious SQL command.
At present, the manufacturer does not provide the repair solution, please pay attention to the manufacturer's home page: