Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
guestbook vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2007-2092
Direct static code injection vulnerability in index.php in Limesoft Guestbook (LS Simple Guestbook) allows remote malicious users to inject arbitrary PHP code into posts.txt via the name parameter. NOTE: the provenance of this information is unknown; the details are obtained sole...
Limesoft Limesoft Guestbook 1.0
1 EDB exploit
4.3
CVSSv2
CVE-2006-2757
Cross-site scripting (XSS) vulnerability in Chipmunk guestbook allows remote malicious users to inject arbitrary web script or HTML via the (1) start parameter in (a) index.php; (2) forumID parameter in index.php, (b) newtopic.php, and (c) reply.php; and (3) ID parameter to (d) e...
Chipmunk Scripts Chipmunk Guestbook
6.4
CVSSv2
CVE-2006-2771
admin/radera/tabort.asp in Hogstorps hogstorp guestbook 2.0 does not verify user credentials, which allows remote malicious users to delete arbitrary posts via a modified delID parameter.
Hogstorps Hogstorp Guestbook 2.0
1 EDB exploit
6.8
CVSSv2
CVE-2006-2772
Cross-site scripting (XSS) vulnerability in add.asp in Hogstorps hogstorp guestbook 2.0 allows remote malicious users to inject arbitrary web script or HTML via the (1) name, (2) email, and (3) headline parameters. NOTE: the provenance of this information is unknown; the details ...
Hogstorps Hogstorp Guestbook 2.0
6.4
CVSSv2
CVE-2006-2773
admin/redigera/redigera2.asp in Hogstorps hogstorp Guestbook 2.0 does not verify user credentials, which allows remote malicious users to edit arbitrary posts via unspecified vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third ...
Hogstorps Hogstorp Guestbook 2.0
7.5
CVSSv2
CVE-2006-2854
SQL injection vulnerability in index.php in iBWd Guestbook 1.0 allows remote malicious users to execute arbitrary SQL commands via the offset parameter.
Ibwd Ibwd Guestbook 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2006-1683
SQL injection vulnerability in admin/login.php in Chipmunk Guestbook allows remote malicious users to execute arbitrary SQL commands and bypass login authentication via the User name.
Chipmunk Scripts Chipmunk Guestbook
1 EDB exploit
6.8
CVSSv2
CVE-2003-1182
Cross-site scripting (XSS) vulnerability in MPM Guestbook 1.2 allows remote malicious users to inject arbitrary web script or HTML via the lng parameter.
Mpm Mpm Guestbook 1.2
1 EDB exploit
7.5
CVSSv2
CVE-2005-1412
SQL injection vulnerability in verify.asp for Ecomm Professional Guestbook 3.x allows remote malicious users to execute arbitrary SQL commands via the AdminPWD parameter.
Ecomm Professional Guestbook 3
1 EDB exploit
7.5
CVSSv2
CVE-2006-0540
Multiple SQL injection vulnerabilities in Tachyon Vanilla Guestbook 1.0 beta allow remote malicious users to execute arbitrary SQL commands via unspecified vectors.
Tachyon Vanilla Guestbook 1.0 Beta
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »