← Back

Rmsoft

rmsoft

4 CVEs • 3 products

Products (3)

Click to collapse
Toggle
Minishop Module
minishop_module
2 CVEs
Gallery System
gallery_system
1 CVE
Downloads Plus Module
downloads_plus_module
1 CVE

CVEs (4)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2008-4435
1Rmsoft
1Downloads Plus Module
Apr 23, 2026
Oct 3, 2008
N/A· v4
N/A· v3
4.3 MEDIUM· v2
Multiple cross-site scripting (XSS) vulnerabilities in the RMSOFT Downloads Plus (rmdp) module 1.5 and 1.7 for Xoops allow remote attackers to inject arbitrary web script or HTML via the (1) key parameter to search.php a...Show more
Multiple cross-site scripting (XSS) vulnerabilities in the RMSOFT Downloads Plus (rmdp) module 1.5 and 1.7 for Xoops allow remote attackers to inject arbitrary web script or HTML via the (1) key parameter to search.php and the (2) id parameter to down.php.Show less
CVE-2008-4433
1Rmsoft
1Minishop Module
Apr 23, 2026
Oct 3, 2008
N/A· v4
N/A· v3
7.5 HIGH· v2
SQL injection vulnerability in search.php in the RMSOFT MiniShop module 1.0 for Xoops might allow remote attackers to execute arbitrary SQL commands via the itemsxpag parameter.
CVE-2008-4432
1Rmsoft
1Minishop Module
Apr 23, 2026
Oct 3, 2008
N/A· v4
N/A· v3
4.3 MEDIUM· v2
Cross-site scripting (XSS) vulnerability in search.php in the RMSOFT MiniShop module 1.0 for Xoops allows remote attackers to inject arbitrary web script or HTML via the itemsxpag parameter.
CVE-2008-0611
2Rmsoft
Xoops
2Gallery System
Xoops
Apr 23, 2026
Feb 6, 2008
N/A· v4
N/A· v3
7.5 HIGH· v2
SQL injection vulnerability in rmgs/images.php in the RMSOFT Gallery System 2.0 module for XOOPS allows remote attackers to execute arbitrary SQL commands via the id parameter.