Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
an guestbook an guestbook vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-1192
Thomas R. Pasawicz HyperBook Guestbook 1.30 stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download an admin password hash via a direct request for data/gbconfiguration.dat.
Hyperbook Guestbook 1.30
1 EDB exploit
NA
CVE-2006-3616
Multiple cross-site scripting (XSS) vulnerabilities in Carbonize Lazarus Guestbook 1.6 and previous versions allow remote malicious users to inject arbitrary web script or HTML via (1) the show parameter in codes-english.php and (2) the img parameter in picture.php, after the nam...
Carbonize Lazarus Guestbook
2 EDB exploits
NA
CVE-2003-1535
Justice Guestbook 1.3 allows remote malicious users to obtain the full installation path via a direct request to cfooter.php3, which leaks the path in an error message.
Justice Media Guestbook 1.3
1 EDB exploit
NA
CVE-2006-6279
index.php in @lex Guestbook 4.0.1 allows remote malicious users to obtain sensitive information via a skin parameter referencing a nonexistent skin, which reveals the installation path in an error message.
Alexphpteam Alex Guestbook 4.0.1
NA
CVE-2005-3517
Chipmunk Scripts Guestbook allows remote malicious users to obtain the installation path of the script via a URL that causes an error message to be displayed, such as a URL that contains a single quote (') in the start parameter of index.php.
Chipmunk Scripts Chipmunk Guestbook
6.1
CVSSv3
CVE-2023-3476
A vulnerability was found in SimplePHPscripts GuestBook Script 2.2. It has been classified as problematic. This affects an unknown part of the file preview.php of the component URL Parameter Handler. The manipulation leads to cross site scripting. It is possible to initiate the a...
Simplephpscripts Guestbook Script 2.2
NA
CVE-2003-1136
Cross-site scripting (XSS) vulnerability in Chi Kien Uong Guestbook 1.51 allows remote malicious users to inject arbitrary web script or HTML via (1) HTML in a posted message or (2) Javascript in an onmouseover attribute in an e-mail address or URL.
Chi Kien Uong Chi Kien Uong Guestbook 1.51
1 EDB exploit
NA
CVE-2006-3617
Cross-site scripting (XSS) vulnerability in pblguestbook.php in Pixelated By Lev (PBL) Guestbook 1.32 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the (1) name, (2) message (aka comments), (3) website, and (4) email parameters, wh...
Pixelated By Lev Pixelated By Lev Guestbook 1.32
NA
CVE-2008-2638
Static code injection vulnerability in guestbook.php in 1Book 1.0.1 and previous versions allows remote malicious users to upload arbitrary PHP code via the message parameter in an HTML webform, which is written to data.php.
1-script 1-book
1 EDB exploit
NA
CVE-2010-4865
SQL injection vulnerability in the JE Guestbook (com_jeguestbook) component 1.0 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the d_itemid parameter in an item_detail action to index.php.
Harmistechnology Com Jeguestbook 1.0
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »