Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
guestbook vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2007-2101
FAC Guestbook 3.01 stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download a database via a direct request for db/gbdb.mdb. NOTE: the provenance of this information is unknown; the details are obtained sole...
Fac Guestbook Fac Guestbook 3.01
4.3
CVSSv2
CVE-2009-2224
Directory traversal vulnerability in ang/shared/flags.php in AN Guestbook 0.7.8, when register_globals is enabled, allows remote malicious users to read arbitrary files via a .. (dot dot) in the g_lang parameter.
An Guestbook An Guestbook 0.7.8
7.5
CVSSv2
CVE-2007-0530
Multiple PHP remote file inclusion vulnerabilities in Advanced Guestbook 2.4.2 allow remote malicious users to execute arbitrary PHP code via a URL in the include_path parameter to (1) index.php, (2) addentry.php, or (3) picture.php, a different set of vectors than CVE-2006-5804....
Advanced Guestbook Advanced Guestbook 2.4.2
2.6
CVSSv2
CVE-2006-2975
Multiple cross-site scripting (XSS) vulnerabilities in pblguestbook.php in PBL Guestbook 1.31 allow remote malicious users to inject arbitrary web script or HTML via javascript in the SRC attribute of IMG tags in the (1) name, (2) email, and (3) website parameter, which bypasses ...
Pbl Guestbook Pbl Guestbook 1.31
7.5
CVSSv2
CVE-2006-5804
PHP remote file inclusion vulnerability in admin.php in Advanced Guestbook 2.3.1 allows remote malicious users to execute arbitrary PHP code via a URL in the include_path parameter.
Advanced Guestbook Advanced Guestbook 2.3.1
7.5
CVSSv2
CVE-2005-1548
SQL injection vulnerability in index.php in Advanced Guestbook 2.3.1 allows remote malicious users to execute arbitrary SQL commands via the entry parameter.
Advanced Guestbook Advanced Guestbook 2.3.1
1 EDB exploit
7.5
CVSSv2
CVE-2005-3588
SQL injection vulnerability in admin.php in Advanced Guestbook 2.2 allows remote malicious users to execute arbitrary SQL commands and gain privileges via the username field.
Advanced Guestbook Advanced Guestbook 2.2
4.3
CVSSv2
CVE-2007-1479
Cross-site scripting (XSS) vulnerability in Guestbook.php in Creative Guestbook 1.0 allows remote malicious users to inject arbitrary web script or HTML via an unspecified parameter.
Creative Guestbook Creative Guestbook 1.0
1 EDB exploit
4.3
CVSSv2
CVE-2017-20089
A vulnerability was found in Gwolle Guestbook Plugin 1.7.4. It has been rated as problematic. This issue affects some unknown processing. The manipulation leads to basic cross site scripting. The attack may be initiated remotely.
Gwolle Guestbook Project Gwolle Guestbook 1.7.4
4.3
CVSSv2
CVE-2006-3568
Multiple cross-site scripting (XSS) vulnerabilities in guestbook.php in Fantastic Guestbook 2.0.1, and possibly earlier versions, allow remote malicious users to inject arbitrary web script or HTML via the (1) first_name, (2) last_name, or (3) nickname parameters.
Fantastic Guestbook Project Fantastic Guestbook 2.0.1
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »