Xoops Kshop Module "search" Cross-Site Scripting

Lostmon has discovered a vulnerability in the Kshop module for Xoops, which can be exploited by malicious people to conduct cross-site scripting attacks.


Be sure to check if your system is missing security updates or have insecure applications installed:
http://secunia.com/software_inspector/

Feature Overview - The Secunia Software Inspector:
* Detects insecure versions of applications installed
* Verifies that all Microsoft patches are applied
* Assists you in updating your system and applications
* Runs through your browser. No installation or download is required.

Related Items