6
This is a severe fail that allow a registered user to have access on the DB.
A lot of sites already have been hacked:
http://xoops-modules.sourceforge.jp/
http://finalsolution.sourceforge.net/xoops/uploads/ (HACKEADO)
http://www.xoopsbrasil.com/
http://xoopsbrasileiro.codigolivre.org.br/
http://xoops.sourceforge.jp/
http://www.xoops-themes.org/
http://www.xoops-modules.com/
http://www.xoopsfactory.net/
http://www.xoops.astra-oreol.spb.ru/
https://xoops.org.cn/
In
XOOPS Brasil all sites in XOOPS are being advised to shut down the access until some solutions is released.