VYPR

Xm Memberstats

by XOOPS

CVEs (2)

  • CVE-2008-1065Feb 28, 2008
    risk 0.00cvss epss 0.01

    Multiple SQL injection vulnerabilities in index.php in the XM-Memberstats (xmmemberstats) 2.0e module for XOOPS allow remote attackers to execute arbitrary SQL commands via the (1) letter or (2) sortby parameter. NOTE: the provenance of this information is unknown; the details…

  • CVE-2008-1063Feb 28, 2008
    risk 0.00cvss epss 0.01

    Cross-site scripting (XSS) vulnerability index.php in the XM-Memberstats (xmmemberstats) module for XOOPS allows remote attackers to inject arbitrary web script or HTML via the sortby parameter.