XSS Vulnerability in XOOPS Core 2.5.8.1: Unescaped HTML Output in page_dbsettings.php

XSS Vulnerability in XOOPS Core 2.5.8.1: Unescaped HTML Output in page_dbsettings.php

CVE-2017-7944 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

XOOPS Core 2.5.8.1 has XSS due to unescaped HTML output of an Install DB failure error message in page_dbsettings.php.

Learn more about our Web Application Penetration Testing UK.