Xoops XM-Memberstats Module "letter" and "sortby" SQL Injection

Xoops XM-Memberstats Module "letter" and "sortby" SQL Injection
BugsAlert Home > Xoops XM-Memberstats Module "letter" and "sortby" SQL Injection




Two vulnerabilities have been discovered in the XM-Memberstats module for Xoops, which can be exploited by malicious people to conduct SQL injection attacks. Be sure to check if your system is missing security updates or have insecure applications installed: http://secunia.com/software_inspector/ Feature Overview - The Secunia Software Inspector: * Detects insecure versions of applications installed * Verifies that all Microsoft patches are applied * Assists you in updating your system and applications * Runs through your browser. No installation or download is required. Original Source: http://secunia.com/advisories/29107/ Learn more about Xoops XM-Memberstats Module "letter" and "sortby" SQL Injection


Tags: xoops xm-memberstats module letter sortby sql injection

Related Items
CVE-2008-0896 (WebLogic Portal)
JS_PSYME.CV
CVE-2008-3483 (screwturn_wiki)
BlueCUBE "id" SQL Injection Vulnerability
CVE-2008-1389 (clamav)
FrSIRT - Sun Solaris Security Update Fixes Samba Code Execution Vulnerabilities
CVE-2008-0436 (MegaBBS)