CVE-2006-3526

2006-07-1200:00:00

mitre

www.cve.org

AI Score

5.8

Confidence

High

EPSS

0.006

Percentile

78.3%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in guestbook.php in Sport-slo Advanced Guestbook 1.0 allow remote attackers to inject arbitrary web script or HTML via (1) name and (2) form parameters.

References

secunia.com/advisories/20977

securityreason.com/securityalert/1211

www.osvdb.org/27066

www.securityfocus.com/archive/1/439491/100/0/threaded

www.vupen.com/english/advisories/2006/2712

exchange.xforce.ibmcloud.com/vulnerabilities/27629