Bcoos » Devtracker : Security Vulnerabilities, CVEs,
Multiple cross-site scripting (XSS) vulnerabilities in index.php in DevTracker module 3.0 for bcoos 1.1.11 and earlier, and DevTracker module 0.20 for E-XooPS 1.0.8 and earlier, allow remote attackers to inject arbitrary web script or HTML via the (1) direction and (2) order_by parameters.
Max CVSS
4.3
EPSS Score
0.48%
Published
2009-08-24
Updated
2017-08-17
1 vulnerabilities found