Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
guestbook vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-125053
A vulnerability was found in Piwigo-Guest-Book up to 1.3.0. It has been declared as critical. This vulnerability affects unknown code of the file include/guestbook.inc.php of the component Navigation Bar. The manipulation of the argument start leads to sql injection. Upgrading to...
Piwigo Guestbook
7.5
CVSSv2
CVE-2008-3320
admin/index.php in Maian Guestbook 3.2 and previous versions allows remote malicious users to bypass authentication and gain administrative access by sending an arbitrary gbook_cookie cookie.
Maian Guestbook
1 EDB exploit
7.5
CVSSv2
CVE-2010-4987
SQL injection vulnerability in default.asp in KMSoft Guestbook (aka GBook) allows remote malicious users to execute arbitrary SQL commands via the p parameter.
Kmsoft Guestbook -
1 EDB exploit
5
CVSSv2
CVE-2009-2648
FlashDen Guestbook allows remote malicious users to obtain configuration information via a direct request to amfphp/phpinfo.php, which calls the phpinfo function.
Flashden Guestbook
4.3
CVSSv2
CVE-2005-1684
Cross-site scripting (XSS) vulnerability in default.asp for episodex guestbook allows remote malicious users to inject arbitrary web script or HTML via the Name field and other fields.
Episodex Episodex Guestbook
7.5
CVSSv2
CVE-2005-1685
episodex guestbook allows remote malicious users to bypass authentication and edit scripts via a direct request to admin.asp.
Episodex Episodex Guestbook
7.5
CVSSv2
CVE-1999-0237
Remote execution of arbitrary commands through Guestbook CGI program.
Webcom Cgi Guestbook
7.5
CVSSv2
CVE-1999-0287
Vulnerability in the Wguest CGI program.
Webcom Cgi Guestbook
2 EDB exploits
5
CVSSv2
CVE-2010-0978
KMSoft Guestbook (aka GBook) 1.0 stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download a database via a direct request for db/db.mdb.
Kmsoft Guestbook 1.0
1 EDB exploit
4.3
CVSSv2
CVE-2006-3852
Cross-site scripting (XSS) vulnerability in index.php in Micro GuestBook allows remote malicious users to execute arbitrary SQL commands via the (1) name or (2) comment ("text") fields.
Phptoys Micro Guestbook
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581
reflected XSS
CVE-2024-26925
CVE-2024-27956
LFI
CVE-2024-3607
CVE-2024-3107
CVE-2024-3295
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »