| 2023-06-14 | Xoops CMS 2.5.10 Cross Site Scripting | Published |
| 2019-05-20 | Xoops Wordpress Modules WP-Ktai 0.5.0 Japan Open Redirection | Published |
| 2019-03-03 | Xoops 1.0.2 PD-Links Modules 1.0 Krobi Database Disclosure | Published |
| 2016-03-18 | Xoops 2.5.7.2 CSRF - Arbitrary User Deletions | Published |
| 2015-04-25 | Xoops CMS 2.5.7.1 Cross Site Scripting | Published |
| 2010-09-03 | XOOPS 2.0.14 remote SQL injection vulnerability in article.php | Published |
| 2010-09-03 | XOOPS 2.0.14 remote SQL injection vulnerability | Published |
| 2010-03-22 | Xoops Celepar Module Quiz Remote XSS Vulnerabilities | Published |
| 2010-01-23 | Xoops 2.4.3 file deletion and HTTP response splitting | Published |
| 2010-01-07 | The XOOPS Dictionary module 2.0.18 remote SQL injection | Published |
| 2009-12-29 | Xoops 2.0.x Module Content 0.5 SQL Injection | Published |
| 2009-09-12 | XOOPS Module Uploader 1.1 filename File Disclosure Vulnerability | Published |
| 2009-08-05 | Stored XSS Vulnerability in Xoops 2.3.x | Published |
| 2009-08-05 | Multiple Local File Include Vulnerabilities in Xoops 2.3.x | Published |
| 2009-08-05 | XOOPS Multiple Cross-Site Scripting Vulnerabilities | Published |
| 2009-01-09 | XOOPS Module Amevents print.php id SQL Injection Vulnerability | Published |
| 2008-12-23 | XOOPS Module xhresim index.php no Remote SQL Injection Vuln | Published |
| 2008-12-11 | XOOPS Module GesGaleri kategorino Remote SQL Injection Exploit | Published |
| 2008-10-25 | XOOPS Module makale Remote SQL Injection Vulnerability | Published |
| 2008-09-11 | Xoops-1.3.10 shell command execute vulnerability causing snoopy class | Published |
| 2008-05-15 | Xoops All Version -Articles- Article.PHP ID Blind SQL Injection ExpL0it | Published |
| 2008-03-06 | XOOPS Module eEmpregos SQL Injectioncid | Published |
| 2008-03-06 | XOOPS Module classifieds SQL Injectioncid | Published |
| 2007-11-24 | Xoops mylinks module - sql injection | Published |
| 2007-10-23 | XOOPS MyTextSanitizer CSS 1.3x & 2.x | Published |
| 2007-06-27 | Xoops All Version -Articles- Print.PHP ID Blind SQL Injection Exploit And PoC | Published |