CVE-2007-1817

Name of the Vulnerable Software and Affected Versions: Xoops Lykos Reviews module version 1.00

Description: The issue allows remote attackers to execute arbitrary SQL commands. This is achieved by exploiting the uid parameter in a 'u' action within the index.php file of the affected module.

Recommendations: For version 1.00 of the Xoops Lykos Reviews module, avoid using the uid parameter in the affected API endpoint until the issue is resolved. As a temporary workaround, consider restricting access to the index.php file to minimize the risk of exploitation.