Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
guestbook vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2010-4987
SQL injection vulnerability in default.asp in KMSoft Guestbook (aka GBook) allows remote malicious users to execute arbitrary SQL commands via the p parameter.
Kmsoft Guestbook -
1 EDB exploit
4.3
CVSSv2
CVE-2015-0871
Cross-site scripting (XSS) vulnerability in Mrs. Shiromuku Perl CGI shiromuku(u1)GUESTBOOK 1.62 and previous versions allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Shiromuku Guestbook
NA
CVE-2014-125053
A vulnerability was found in Piwigo-Guest-Book up to 1.3.0. It has been declared as critical. This vulnerability affects unknown code of the file include/guestbook.inc.php of the component Navigation Bar. The manipulation of the argument start leads to sql injection. Upgrading to...
Piwigo Guestbook
7.5
CVSSv2
CVE-2008-3320
admin/index.php in Maian Guestbook 3.2 and previous versions allows remote malicious users to bypass authentication and gain administrative access by sending an arbitrary gbook_cookie cookie.
Maian Guestbook
1 EDB exploit
4.3
CVSSv2
CVE-2009-2440
Cross-site scripting (XSS) vulnerability in index.php in JNM Guestbook 3.0 allows remote malicious users to inject arbitrary web script or HTML via the page parameter.
Jnmsolutions Guestbook 3.0
1 EDB exploit
6.4
CVSSv2
CVE-2006-2158
Dynamic variable evaluation vulnerability in index.php in Stadtaus Guestbook Script 1.7 and previous versions, when register_globals is enabled, allows remote malicious users to modify arbitrary program variables via parameters, which are evaluated as PHP variable variables, as d...
Stadtaus Guestbook Script
5
CVSSv2
CVE-1999-0467
The Webcom CGI Guestbook programs wguest.exe and rguest.exe allow a remote malicious user to read arbitrary files using the "template" parameter.
Webcom Cgi Guestbook
2 EDB exploits
4.3
CVSSv2
CVE-2003-1534
Cross-site scripting (XSS) vulnerability in jgb.php3 in Justice Guestbook 1.3 allows remote malicious users to inject arbitrary web script or HTML via the (1) name, (2) homepage, (3) aim, (4) yim, (5) location, and (6) comment variables.
Justice Media Guestbook
4.3
CVSSv2
CVE-2003-1546
Cross-site scripting (XSS) vulnerability in gbook.php in Filebased guestbook 1.1.3 allows remote malicious users to inject arbitrary web script or HTML via the comment section.
Filebased Guestbook 1.1.3
5
CVSSv2
CVE-2010-0978
KMSoft Guestbook (aka GBook) 1.0 stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download a database via a direct request for db/db.mdb.
Kmsoft Guestbook 1.0
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
bypass
open redirect
CVE-2024-4358
CVE-2024-24199
CVE-2024-5550
CVE-2024-5305
CVE-2024-30373
CVE-2024-1800
deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »