Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
guestbook vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-6279
index.php in @lex Guestbook 4.0.1 allows remote malicious users to obtain sensitive information via a skin parameter referencing a nonexistent skin, which reveals the installation path in an error message.
Alexphpteam Alex Guestbook 4.0.1
NA
CVE-2003-1314
PHP remote file inclusion vulnerability in admin/auth.php in EternalMart Guestbook (EMGB) 1.1 allows remote malicious users to execute arbitrary PHP code via a URL in the emgb_admin_path parameter.
Eternalmart Eternalmart Guestbook 1.1
1 EDB exploit
NA
CVE-2002-1729
Cross-site scripting vulnerability (XSS) in ASPjar Guestbook 1.00 allows remote malicious users to execute arbitrary script as other users via the "web site" parameter in a guestbook message.
Aspjar Aspjar Guestbook 1.0
NA
CVE-2002-1730
ASPjar Guestbook 1.00 allows remote malicious users to delete arbitrary messages accessing the delete.asp administrative script with certain cookie values set to "true".
Aspjar Aspjar Guestbook 1.0
NA
CVE-2008-5852
Emefa Guestbook 3.0 stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download the database file via a direct request for guestbook.mdb.
Emefa Emefa Guestbook 3.0
1 EDB exploit
NA
CVE-2002-0550
Dynamic Guestbook 3.0 allows remote malicious users to execute arbitrary code via shell metacharacters in the gbdaten parameter.
Gcf Dynamic Guestbook 3.0
NA
CVE-2002-0551
Cross-site scripting vulnerability in Dynamic Guestbook 3.0 allows remote malicious users to execute code in clients who access guestbook pages via the parameters (1) name, (2) mail, or (3) kommentar.
Gcf Dynamic Guestbook 3.0
NA
CVE-2009-3189
Cross-site scripting (XSS) vulnerability in search.php in DigiOz Guestbook 1.7.2 allows remote malicious users to inject arbitrary web script or HTML via the search_term parameter.
Digioz Digioz Guestbook 1.7.2
1 EDB exploit
NA
CVE-2007-1933
Multiple directory traversal vulnerabilities in PcP-Guestbook (PcP-Book) 3.0 allow remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the lang parameter to (1) index.php, (2) gb.php, or (3) faq.php.
Dreamcodes Pcp-guestbook 3.0
1 EDB exploit
NA
CVE-2009-0498
Virtual GuestBook (vgbook) 2.1 stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download the database file via a direct request to guestbook.mdb.
Minitdesign Virtual Guestbook 2.1
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »