CVE-2017-12138
Published
CVSS v3
N/A
CVSS v2
5.8
MEDIUM
Affected
1
PROJECT
Description
XOOPS Core 2.5.8 has a stored URL redirect bypass vulnerability in /modules/profile/index.php because of the URL filter.
XOOPS Core 2.5.x (current release is 2.5.11: https://github.com/XOOPS/XoopsCore25/releases)
GitHub