Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
guestbook vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2023-3476
A vulnerability was found in SimplePHPscripts GuestBook Script 2.2. It has been classified as problematic. This affects an unknown part of the file preview.php of the component URL Parameter Handler. The manipulation leads to cross site scripting. It is possible to initiate the a...
Simplephpscripts Guestbook Script 2.2
NA
CVE-2009-4678
Cross-site scripting (XSS) vulnerability in index.php in Winn Guestbook 2.4 allows remote malicious users to inject arbitrary web script or HTML via the PATH_INFO.
Winn Winn Guestbook 2.4
1 EDB exploit
NA
CVE-2009-4687
SQL injection vulnerability in silentum_guestbook.php in Silentum Guestbook 2.0.2 allows remote malicious users to execute arbitrary SQL commands via the messageid parameter.
Hypersilence Silentum Guestbook 2.0.2
1 EDB exploit
NA
CVE-2005-4598
Cross-site scripting (XSS) vulnerability in home.php in OoApp Guestbook 2.1 allows remote malicious users to inject arbitrary web script or HTML via the page parameter.
Ooapp Ooapp Guestbook 2.1
1 EDB exploit
NA
CVE-2005-0423
SQL injection vulnerability in login.asp in ASPjar Guestbook allows remote malicious users to execute arbitrary SQL commands via the password field.
Aspjar Aspjar Guestbook 1.0
NA
CVE-2005-0424
Unknown vulnerability in the delete.asp program in certain versions of ASPjar Guestbook allows remote malicious users to delete messages. NOTE: there is insufficient information to know if this is the same issue as CVE-2002-1730.
Aspjar Aspjar Guestbook 1.0
NA
CVE-2006-5531
PHP remote file inclusion vulnerability in embedded.php in Ascended Guestbook 1.0.0 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the CONFIG[path] parameter.
Ascended Development Ascended Guestbook
1 EDB exploit
NA
CVE-2006-5651
list.php in DigiOz Guestbook prior to 1.7.1 allows remote malicious users to obtain sensitive information via a non-numeric page parameter, which displays the installation path in the resulting error message.
Digioz Digioz Guestbook 1.7
NA
CVE-2006-0069
Cross-site scripting (XSS) vulnerability in addentry.php in Chipmunk Guestbook 1.4 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the homepage parameter.
Chipmunk Scripts Chipmunk Guestbook
NA
CVE-2007-2093
Direct static code injection vulnerability in index.php in Limesoft Guestbook (LS Simple Guestbook) 1.0 allows remote malicious users to inject arbitrary PHP code into posts.txt via the message parameter.
Limesoft Limesoft Guestbook 1.0
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
bypass
open redirect
CVE-2024-4358
CVE-2024-24199
CVE-2024-5550
CVE-2024-5305
CVE-2024-30373
CVE-2024-1800
deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »