CVE-2002-2391

EPSS 0.37% · P59 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2002-2391

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

SQL injection vulnerability in index.php of WebChat 1.5 included in XOOPS 1.0 allows remote attackers to execute arbitrary SQL commands via the roomid parameter.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Xoops WebChat远程SQL插入漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Xoops是一个用面向对象的PHP写的开源、免费的Web服务器程序，它用MySQL作为后台数据库，可以运行于大多数的Unix和Linux系统 Xoops的WebChat模块包含的index.php脚本对用户提交输入缺少正确过滤，远程攻击者可以利用这个漏洞进行SQL注入攻击，可以用来获得或破坏数据库信息。 WebChat模块包含的index.php脚本对用户提交的$roomid变量的数据缺少充分检查，攻击者可以构建恶意畸形查询字符串而导致修改原来系统的SQL查询逻辑，通过插入SQL代码到$roomid变量，

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2002-2391

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2002-2391

请登录查看更多情报信息。

http://www.securityfocus.com/bid/6165vdb-entryx_refsource_BID
http://www.iss.net/security_center/static/10606.phpvdb-entryx_refsource_XF
http://cert.uni-stuttgart.de/archive/bugtraq/2002/11/msg00258.htmlmailing-listx_refsource_BUGTRAQ
http://archives.neohapsis.com/archives/bugtraq/2002-11/0136.htmlmailing-listx_refsource_BUGTRAQ
https://nvd.nist.gov/vuln/detail/CVE-2002-2391

Same Patch Batch · n/a · 2007-10-31 · 44 CVEs total

CVE-2002-2382		CVSup-Mirror以不安全方式创建临时文件漏洞
CVE-2002-2385		Hotfoon Dialer远程缓冲区溢出漏洞
CVE-2002-2384		Hotfoon Dialer明文口令存储漏洞
CVE-2002-2386		XOOPS Quizz模块跨站脚本（XSS）漏洞
CVE-2002-2389		Fastlink Software TheServer纯文本密码存储漏洞
CVE-2002-2390		Trillian Identd远程缓冲区溢出漏洞
CVE-2002-2392		Nullsoft Winamp Skin可预见文件位置漏洞
CVE-2002-2393		SolarWinds Serv-U File Server 输入验证错误漏洞
CVE-2007-5740		Perdition IMAP代理str_vwrite函数远程格式串处理漏洞
CVE-2002-2388		INweb POP3邮件服务器缓冲区溢出漏洞
CVE-2002-2383		F2HTML.PL SQL注入漏洞
CVE-2002-2381		GTetrinet多个远程缓冲区溢出漏洞
CVE-2002-2380		Arescom NetDSL-800固件存在未公开帐户漏洞
CVE-2002-2379		Cisco AS5350通用网关远程拒绝服务攻击漏洞
CVE-2002-2378		AN HTTPD出错页跨站脚本漏洞
CVE-2002-2377		Zap Book服务器端包含任意命令行执行漏洞
CVE-2002-2376		E-Guest Guest Book脚本注入漏洞
CVE-2002-2375		CommuniGate Pro目录遍历漏洞
CVE-2002-2374		Sun PatchPro不安全临时文件漏洞
CVE-2002-2373		Apple 12/640 PS LaserWriter TCP/IP配置工具Telnet服务默认无口令漏洞

Showing top 20 of 44 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2002-2391

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2002-2391

I. Basic Information for CVE-2002-2391

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2002-2391

III. Intelligence Information for CVE-2002-2391

Same Patch Batch · n/a · 2007-10-31 · 44 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2002-2391

Leave a comment