首页
提交漏洞
女娲计划
排行榜
市场
悬赏
兑换
最新 PoC
搜索
社区
Pocsuite
Ceye.io
Paper
KCon
ZoomEye
关于
数据统计
漏洞市场
开发文档
相关说明
意见反馈
帮助
登录
注册
Toggle navigation
登录
首页
悬赏与排名
详情悬赏列表
PoC 悬赏列表
兑换
排行榜
提交新漏洞
漏洞库
漏洞列表
组件分类
漏洞分类
搜索
数据统计
Paper
'
漏洞组件
— Xoops
漏洞详情:
利用 PHP+MySQL 编写的面向对象的可扩展智能建站门户系统 XOOPS 作为开源社区一个优秀的内容管理系统,自它面世起就一直受到人们的关注。其主要特征包括系统功能模块化,界面设计模板化,安装使用管理简洁明了,功能完善。 相对于其他 CMS,XOOPS 有完善的权限管理,可以对不同用户群组赋予不同的使用或管理权限。XOOPS 代码规范,注重安全性,极少被发现有安全漏洞;结构设计合理,易于作二次开发。作为理想的开发系统,被广泛用于个人网站、社区交流、公司企业以及各类大型门户系统。 XOOPS 社区开发活跃,各类功能模块可有不同选择,包括:新闻发布系统、文章管理、论坛、相册、资源下载、友情链接、广告/黄页管理、在线购物等传统模块,近来并有各种新型类别如 BLOG、WIKI、RSS 在线阅读/采集等。 作为一个功能强大的 CMS 系统,得益于其结构设计合理,XOOPS 除了本身的各类功能模块之外,可以很方便的集成现有的软件,比著名的 BLOG 程序 WORDPRESS、购物系统 OSCOMMERCE/ZEN-CART、图片管理程序 GALLERY等已经被集成到 XOOPS 中。BLOG.XOOPS.ORG.CN 就是使用了 WORDPRESS FOR XOOPS 中文。 XOOPS 的发布按照 GPL (GNU General Public License) 协议,在遵守GPL条款的前提下可以在任何场合免费使用和修改。
相关漏洞
SSV ID
提交时间
漏洞等级
漏洞名称
漏洞状态
人气 | 评论
SSV-91313
2016-04-14
Xoops 2.5.7.2 - Directory Traversal Bypass
2169 | 0
SSV-91312
2016-04-14
Xoops 2.5.7.2 - Arbitrary User Deletions CSRF
1878 | 0
SSV-60071
2012-04-20
XOOPS 2.5.4 Multiple XSS Vulnerabilities
2071 | 0
SSV-26045
2011-12-12
Xoops 2.5.4 Blind SQL Injection Vulnerability
27800 | 0
SSV-19742
2010-06-05
xoops tad_uploader模块上传漏洞
1869 | 0
SSV-18973
2010-01-21
XOOPS任意文件删除和HTTP头注入漏洞
2008 | 0
SSV-15188
2010-01-06
XOOPS modules/pm/readpmsg.php页面跨站脚本漏洞
1560 | 0
SSV-15189
2010-01-06
XOOPS include/notification_update.php页面SQL注入漏洞
1903 | 0
SSV-18845
2009-12-30
XOOPS Module dictionary 2.0.18 (detail.php) SQL Injection Vulnerability
4017 | 0
SSV-87814
2009-12-25
xoops 1.02 print.php Sql注入漏洞
2403 | 0
SSV-87821
2009-12-25
xoops 2.3.2 代码执行漏洞
1267 | 0
SSV-87819
2009-12-25
xoops 2.0.14 article.php Sql注入漏洞
1507 | 0
SSV-18350
2009-11-30
XOOPS SmartMedia 0.85 Module XSS
1559 | 0
SSV-12654
2009-11-17
Xoops用户配置文件激活安全绕过漏洞
1360 | 0
SSV-11896
2009-07-28
XOOPS Celepar Module Qas (bSQL/XSS) Multiple Remote Vulnerabilities
1415 | 0
SSV-11884
2009-07-27
Xoops Celepar Module Qas (codigo) SQL Injection Vulnerability
1519 | 0
SSV-11643
2009-06-17
XOOPS <= 2.3.3 Remote File Disclosure Vulnerability (.htaccess)
1637 | 0
SSV-4652
2009-01-12
XOOPS mydirname参数多个PHP代码注入漏洞
1643 | 0
SSV-17698
2009-01-11
XOOPS Module tadbook2 (open_book.php book_sn) SQL Injection Vuln
1440 | 0
SSV-10433
2009-01-09
XOOPS 2.3.2 (mydirname) Remote PHP Code Execution Exploit
1426 | 0
SSV-17637
2008-12-15
XOOPS Module Amevents (print.php id) SQL Injection Vulnerability
1380 | 0
SSV-10201
2008-12-09
XOOPS 2.3.1 Multiple Local File Inclusion Vulnerabilities
1555 | 0
SSV-4317
2008-10-25
Xoops个人消息系统跨站脚本执行(CSS/XSS)漏洞
1497 | 0
SSV-4318
2008-10-25
Xoops远程SQLInjection漏洞
2005 | 0
SSV-9771
2008-10-21
XOOPS Module makale Remote SQL Injection Vulnerability
1511 | 0
SSV-9752
2008-10-19
XOOPS Module GesGaleri (kategorino) Remote SQL Injection Exploit
1389 | 0
SSV-9723
2008-10-15
XOOPS Module xhresim (index.php no) Remote SQL Injection Vulnerability
1439 | 0
SSV-17429
2008-10-14
XOOPS Module xhresim (index.php no) Remote SQL Injection Vuln
1385 | 0
SSV-9386
2008-08-30
XoopsDownload3000 / Cross Siting Scripting
1452 | 0
SSV-3708
2008-07-23
Xoops本地文件包含和跨站脚本漏洞
1339 | 0
SSV-3405
2008-06-12
XOOPS Uploader上传模块'filename'参数目录遍历漏洞
1556 | 0
SSV-8685
2008-06-10
XOOPS Module Uploader 1.1 (filename) File Disclosure Vulnerability
1593 | 0
SSV-8362
2008-04-21
XOOPS Module Recipe (detail.php id) SQL Injection Vulnerability
1406 | 0
SSV-8351
2008-04-20
XOOPS Module Recipe (detail.php id) Remote SQL Injection Exploit
1428 | 0
SSV-7939
2008-03-18
XOOPS Module Dictionary <= 0.94 Remote SQL Injection Vulnerability
1359 | 0
SSV-7986
2008-03-13
XOOPS Module My_eGallery 3.04 (gid) SQL Injection Vulnerability
1348 | 0
SSV-7983
2008-03-13
XOOPS Module tutorials (printpage.php) SQL Injection Vulnerability
1508 | 0
SSV-7987
2008-03-13
XOOPS Module Gallery 0.2.2 (gid) Remote SQL Injection Vulnerability
1372 | 0
SSV-7966
2008-03-07
XOOPS Module wfdownloads (cid) Remote SQL Injection Vulnerability
1572 | 0
SSV-7965
2008-03-07
XOOPS Module Glossario 2.2 (sid) Remote SQL Injection Vulnerability
1392 | 0
SSV-8126
2008-02-20
XOOPS Module eEmpregos (cid) Remote SQL Injection Vulnerability
1279 | 0
SSV-8125
2008-02-20
XOOPS Module classifieds (cid) Remote SQL Injection Vulnerability
1525 | 0
SSV-8130
2008-02-20
XOOPS Module myTopics (articleid) Remote SQL Injection Vulnerability
1322 | 0
SSV-8065
2008-02-05
XOOPS 2.0.18 Local File Inclusion / URL Redirecting Vulnerabilities
1474 | 0
SSV-2793
2008-01-09
Xoops XoopsGallery Module 'init_basic.php'远程文件包含漏洞
1353 | 0
SSV-7799
2008-01-07
XOOPS mod_gallery Zend_Hash_key + Extract RFI Vulnerability
1433 | 0
SSV-6954
2007-06-20
XOOPS Module WiwiMod 0.4 Remote File Inclusion Vulnerability
1528 | 0
SSV-1885
2007-06-18
Xoops XT-Conteudo模块Spaw_Control.Class.PHP远程文件包含漏洞
1680 | 0
SSV-1876
2007-06-15
Xoops XFsection模块Dir_Module参数远程文件包含漏洞
1317 | 0
SSV-6942
2007-06-14
XOOPS Module Cjay Content 3 Remote File Inclusion Vulnerability
1380 | 0
SSV-6943
2007-06-14
XOOPS Module XT-Conteudo (spaw_root) RFI Vulnerability
1346 | 0
SSV-6944
2007-06-14
XOOPS Module XFsection (modify.php) Remote File Inclusion Vulnerability
1435 | 0
SSV-6934
2007-06-13
XOOPS Module TinyContent 1.5 Remote File Inclusion Vulnerability
1470 | 0
SSV-6935
2007-06-13
XOOPS Module Horoscope 1.0 Remote File Inclusion Vulnerability
1325 | 0
SSV-17035
2007-06-12
XOOPS Module Horoscope <= 2.0 Remote File Inclusion Vulnerability
1358 | 0
SSV-1842
2007-06-07
Xoops iContent模块Spaw_Control.Class.PHP远程文件包含漏洞
1620 | 0
SSV-6896
2007-06-02
XOOPS Module icontent 1.0 Remote File Inclusion Exploit
1356 | 0
SSV-17029
2007-06-01
XOOPS Module icontent 1.0/4.5 Remote File Inclusion Exploit
1297 | 0
SSV-6817
2007-05-16
XOOPS Module resmanager <= 1.21 BLIND SQL Injection Exploit
1401 | 0
SSV-6818
2007-05-16
XOOPS Module Glossarie <= 1.7 (sid) Remote SQL Injection Exploit
1379 | 0
SSV-6819
2007-05-16
XOOPS Module MyConference 1.0 (index.php) SQL Injection Exploit
1440 | 0
SSV-6766
2007-05-08
XOOPS Module wfquotes 1.0 0 Remote SQL Injection Vulnerability
1277 | 0
SSV-6757
2007-05-05
XOOPS Flashgames Module 1.0.1 Remote SQL Injection Vulnerability
1496 | 0
SSV-1643
2007-04-18
XOOPS TeamSpeak Display TSDisplay4xoops_block2.PHP远程文件包含漏洞
1250 | 0
SSV-6650
2007-04-17
XOOPS Module tsdisplay4xoops 0.1 Remote File Inclusion Vulnerability
1544 | 0
SSV-1612
2007-04-15
XOOPS Rha7 Downloads Module Visit.PHP SQL注入漏洞
1276 | 0
SSV-6588
2007-04-07
XOOPS Module Jobs <= 2.4 (cid) Remote SQL Injection Exploit
1397 | 0
SSV-6591
2007-04-07
XOOPS Module WF-Links <= 1.03 (cid) Remote SQL Injection Exploit
1470 | 0
SSV-16963
2007-04-05
XOOPS Module Jobs <= 2.4 (cid) Remote SQL Injection Exploit
1316 | 0
SSV-16957
2007-04-04
XOOPS Module WF-Snippets <= 1.02 (c) BLIND SQL Injection Exploit
1376 | 0
SSV-16959
2007-04-04
XOOPS Module Rha7 Downloads 1.0 (visit.php) SQL Injection Exploit
1461 | 0
SSV-6577
2007-04-04
Xoops Module PopnupBlog <= 2.52 (postid) BLIND SQL Injection Exploit
1708 | 0
SSV-6580
2007-04-04
Xoops Module WF-Section <= 1.01 (articleid) SQL Injection Exploit
1406 | 0
SSV-6579
2007-04-04
Xoops Module XFsection <= 1.07 (articleid) BLIND SQL Injection Exploit
1448 | 0
SSV-6564
2007-04-03
Xoops Module Virii Info <= 1.10 (index.php) Remote File Include Exploit
1384 | 0
SSV-6562
2007-04-03
Xoops Module XFsection <= 1.07 (articleid) BLIND SQL Injection Exploit
1444 | 0
SSV-1595
2007-04-03
XOOPS Module Repository ViewCat.PHP SQL注入漏洞
1313 | 0
SSV-6563
2007-04-03
Xoops Module WF-Section <= 1.01 (articleid) SQL Injection Exploit
1329 | 0
SSV-6560
2007-04-03
Xoops Module Zmagazine 1.0 (print.php) Remote SQL Injection Exploit
1445 | 0
SSV-6555
2007-04-02
Xoops Module Lykos Reviews 1.00 (index.php) SQL Injection Exploit
1460 | 0
SSV-6558
2007-04-02
Xoops Module Repository (viewcat.php) Remote SQL Injection Exploit
1583 | 0
SSV-6554
2007-04-02
Xoops Module Library (viewcat.php) Remote SQL Injection Exploit
1423 | 0
SSV-6543
2007-04-02
Xoops Module myAlbum-P <= 2.0 (cid) Remote SQL Injection Exploit
1590 | 0
SSV-6546
2007-04-02
Xoops Module Camportail <= 1.1 (camid) Remote SQL Injection Exploit
1439 | 0
SSV-6549
2007-04-02
Xoops Module Tiny Event <= 1.01 (id) Remote SQL Injection Exploit
1323 | 0
SSV-6551
2007-04-02
Xoops Module eCal <= 2.24 (display.php) Remote SQL Injection Exploit
1454 | 0
SSV-6541
2007-04-02
Xoops Module RM+Soft Gallery 1.0 BLIND SQL Injection Exploit
1543 | 0
SSV-6545
2007-04-02
Xoops Module debaser <= 0.92 (genre.php) BLIND SQL Injection Exploit
1483 | 0
SSV-16953
2007-04-02
XOOPS Module XFsection <= 1.07 (articleid) BLIND SQL Injection Exploit
1321 | 0
SSV-6548
2007-04-02
Xoops Module Kshop <= 1.17 (id) Remote SQL Injection Exploit
1409 | 0
SSV-6552
2007-04-02
Xoops Module Core (viewcat.php) Remote SQL Injection Exploit
1368 | 0
SSV-16951
2007-04-01
XOOPS Module debaser <= 0.92 (genre.php) BLIND SQL Injection Exploit
1422 | 0
SSV-16952
2007-04-01
XOOPS Module myAlbum-P <= 2.0 (cid) Remote SQL Injection Exploit
1544 | 0
SSV-16948
2007-04-01
XOOPS Module Tiny Event <= 1.01 (id) Remote SQL Injection Exploit
1478 | 0
SSV-16947
2007-04-01
XOOPS Module eCal <= 2.24 (display.php) Remote SQL Injection Exploit
1449 | 0
SSV-16950
2007-04-01
XOOPS Module Camportail <= 1.1 (camid) Remote SQL Injection Exploit
1347 | 0
SSV-16949
2007-04-01
XOOPS Module Kshop <= 1.17 (id) Remote SQL Injection Exploit
1403 | 0
SSV-16946
2007-03-31
XOOPS Module Tutoriais (viewcat.php) Remote SQL Injection Exploit
1413 | 0
SSV-6528
2007-03-30
Xoops Module MyAds Bug Fix <= 2.04jp (index.php) SQL Injection Exploit
1225 | 0
SSV-6519
2007-03-29
Xoops module Articles <= 1.03 (index.php cat_id) SQL Injection Exploit
1242 | 0
1
2
×
您好,
续费请拨打客服热线,感谢您一直支持 Seebug!
010-57076191
京ICP备10040895号