Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
an guestbook an guestbook vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2023-3476
A vulnerability was found in SimplePHPscripts GuestBook Script 2.2. It has been classified as problematic. This affects an unknown part of the file preview.php of the component URL Parameter Handler. The manipulation leads to cross site scripting. It is possible to initiate the a...
Simplephpscripts Guestbook Script 2.2
6.1
CVSSv3
CVE-2021-24980
The Gwolle Guestbook WordPress plugin prior to 4.2.0 does not sanitise and escape the gwolle_gb_user_email parameter before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting issue in an admin page
Gwolle Guestbook Project Gwolle Guestbook
6.1
CVSSv3
CVE-2018-8805
Yxcms building system (compatible cell phone) v1.4.7 has XSS via the content parameter to protected\apps\default\view\default\extend_guestbook.php or protected\apps\default\view\mobile\extend_guestbook.php in an index.php?r=default/column/index&col=guestbook request.
Yxcms Yxcms 1.4.7
NA
CVE-2010-4865
SQL injection vulnerability in the JE Guestbook (com_jeguestbook) component 1.0 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the d_itemid parameter in an item_detail action to index.php.
Harmistechnology Com Jeguestbook 1.0
1 EDB exploit
NA
CVE-2009-3803
Multiple cross-site scripting (XSS) vulnerabilities in Amiro.CMS 5.4.0.0 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the status_message parameter to (1) /news, (2) /comment, (3) /forum, (4) /blog, and (5) /tags; the status_message...
Amirocms Amiro.cms
Amirocms Amiro.cms 5.2.3
Amirocms Amiro.cms 4.2.2.0
Amirocms Amiro.cms 4.2.1.0
Amirocms Amiro.cms 5.0.7
Amirocms Amiro.cms 4.2.5
Amirocms Amiro.cms 4.2.4
Amirocms Amiro.cms 4.2.3.0
Amirocms Amiro.cms 5.2.2
Amirocms Amiro.cms 5.2
Amirocms Amiro.cms 4.2.0.5
Amirocms Amiro.cms 4.0.8.0
1 EDB exploit
NA
CVE-2009-2224
Directory traversal vulnerability in ang/shared/flags.php in AN Guestbook 0.7.8, when register_globals is enabled, allows remote malicious users to read arbitrary files via a .. (dot dot) in the g_lang parameter.
An Guestbook An Guestbook 0.7.8
NA
CVE-2009-0424
Cross-site scripting (XSS) vulnerability in sign1.php in AN Guestbook (ANG) prior to 0.7.7 allows remote malicious users to inject arbitrary web script or HTML via the country parameter, which is not properly handled in (1) administrator/manage.php or (2) administrator/trash.php....
An Guestbook An Guestbook 0.7.1
An Guestbook An Guestbook 0.7
An Guestbook An Guestbook 0.3.4
An Guestbook An Guestbook 0.3.3
An Guestbook An Guestbook 2.0
An Guestbook An Guestbook 1.5
An Guestbook An Guestbook 1.2
An Guestbook An Guestbook 0.4.5
An Guestbook An Guestbook 0.4.1
An Guestbook An Guestbook 3.0
An Guestbook An Guestbook 2.2a
An Guestbook An Guestbook
An Guestbook An Guestbook 0.6
An Guestbook An Guestbook 0.5
An Guestbook An Guestbook 0.3.2
An Guestbook An Guestbook 0.3.1
An Guestbook An Guestbook 1.1
An Guestbook An Guestbook 1.0
An Guestbook An Guestbook 0.7.5
An Guestbook An Guestbook 0.4
An Guestbook An Guestbook 0.3.5
An Guestbook An Guestbook 2.2
NA
CVE-2008-3847
Multiple cross-site scripting (XSS) vulnerabilities in AN Guestbook (ANG) prior to 0.7.6 allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Aguestbook An Guestbook 0.2
Aguestbook An Guestbook 0.3.1
Aguestbook An Guestbook 0.4.5
Aguestbook An Guestbook 0.5
Aguestbook An Guestbook 0.1
Aguestbook An Guestbook 0.4
Aguestbook An Guestbook 0.4.1
Aguestbook An Guestbook 0.3.4
Aguestbook An Guestbook 0.3.5
Aguestbook An Guestbook 0.7.1
Aguestbook An Guestbook
Aguestbook An Guestbook 0.3.2
Aguestbook An Guestbook 0.3.3
Aguestbook An Guestbook 0.6
Aguestbook An Guestbook 0.7
NA
CVE-2008-3320
admin/index.php in Maian Guestbook 3.2 and previous versions allows remote malicious users to bypass authentication and gain administrative access by sending an arbitrary gbook_cookie cookie.
Maian Guestbook
1 EDB exploit
NA
CVE-2008-2638
Static code injection vulnerability in guestbook.php in 1Book 1.0.1 and previous versions allows remote malicious users to upload arbitrary PHP code via the message parameter in an HTML webform, which is written to data.php.
1-script 1-book
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »