Secunia Security Advisory – Lostmon has discovered two vulnerabilities in the PopnupBlog module for Xoops, which can be exploited by malicious people to conduct cross-site scripting attacks.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/69445/sa31625.txt
Source: https://packetstormsecurity.com/files/69445/Secunia-Security-Advisory-31625.html