Lucene search
K

38 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2007-0204

Malware in sbrugna...

7.5CVSS6.4AI score0.03679EPSS
Exploits1References10
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2008-7099

Malware in sbrugna...

4.3CVSS6.4AI score0.01478EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2006-6262

Malware in sbrugna...

5CVSS6.4AI score0.01488EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2006-6261

Malware in sbrugna...

6.8CVSS6.4AI score0.014EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2004-1548

Malware in sbrugna...

7.5CVSS6.4AI score0.07345EPSS
Exploits1References6
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.45 views

@lex Guestbook 5.0 Multiple Cross Site Scripting Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/37706/info @lex Guestbook is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in t...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.20 views

@lex Guestbook <= 4.0.5 - setup.php language_setup Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/28519/info @lex Guestbook is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.55 views

@lex Guestbook <= 4.0.2 - Remote Command Execution Exploit

No description provided by source. !/usr/bin/php ?php // | | header @lex Guestbook = 4.0.2 Remote Command Execution Exploit | header ======================================================== | status Retrieving the administrator password | sploit AdminUsername::root | sploit AdminPassword::toor |...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2010/01/11 12:0 a.m.19 views

@lex Guestbook 5.0 - Multiple Cross-Site Scripting Vulnerabilities

@lex Guestbook 5.0 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/37706/info @lex Guestbook is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to...

0.2AI score
Exploits0
Exploit DB
Exploit DB
added 2010/01/11 12:0 a.m.24 views

@lex Guestbook 5.0 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/37706/info @lex Guestbook is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user...

7AI score
Exploits0
Packet Storm
Packet Storm
added 2010/01/11 12:0 a.m.28320 views

@lex Guestbook Cross Site Scripting

============================================================================== / \ | | | | / \ | | | | / \ | | | | / \ | || | / \ | | | | / \ | | // \ || || // \ || || ============================================================================== » Note : Forever RevengeHack.Com-Ar-Ge.Org Acildi...

7.4AI score
Exploits0
NVD
NVD
added 2009/09/01 4:30 p.m.22 views

CVE-2008-7140

Multiple cross-site scripting XSS vulnerabilities in @lex Guestbook 4.0.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 languagesetup parameter to setup.php or 2 test parameter to index.php. NOTE: the provenance of this information is unknown; the details are...

4.3CVSS5.7AI score0.01478EPSS
Exploits1References4
Prion
Prion
added 2009/09/01 4:30 p.m.14 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in @lex Guestbook 4.0.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 languagesetup parameter to setup.php or 2 test parameter to index.php. NOTE: the provenance of this information is unknown; the details are...

4.3CVSS5.9AI score0.01478EPSS
Exploits1References4Affected Software1
CVE
CVE
added 2009/09/01 4:0 p.m.51 views

CVE-2008-7140

CVE-2008-7140 involves multiple XSS vulnerabilities in the @lex Guestbook package (version 4.0.5 and earlier). The flaws allow remote attackers to inject arbitrary web script or HTML by supplying (1) the language_setup parameter to setup.php or (2) the test parameter to index.php. The posted data...

4.3CVSS5.7AI score0.01478EPSS
Exploits1References4Affected Software1
Exploit DB
Exploit DB
added 2008/03/31 12:0 a.m.60 views

@lex Guestbook 4.0.5 - &#039;setup.php?language_setup&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/28519/info @lex Guestbook is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2008/03/31 12:0 a.m.25 views

@lex Guestbook 4.0.5 - &#039;index.php?test&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/28519/info @lex Guestbook is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in...

7AI score
Exploits0
Prion
Prion
added 2007/01/11 10:28 p.m.10 views

Directory traversal

Directory traversal vulnerability in admin/skins.php for @lex Guestbook 4.0.2 and earlier allows remote attackers to create files in arbitrary directories via ".." sequences in the 1 ajskin and 2 skinedit parameters. NOTE: this can be leveraged for file inclusion by creating a skin file in the la...

7.5CVSS7.3AI score0.0328EPSS
Exploits1References8Affected Software1
CVE
CVE
added 2007/01/11 10:0 p.m.50 views

CVE-2007-0205

CVE-2007-0205 is a directory traversal vulnerability in the admin/skins.php module of @lex Guestbook 4.0.2 and earlier. Attackers can create files in arbitrary directories by supplying . . sequences in the aj_skin and skin_edit parameters, which can enable file inclusion by placing a skin file in...

7.5CVSS6.8AI score0.0328EPSS
Exploits1References8Affected Software1
NVD
NVD
added 2007/01/11 11:28 a.m.17 views

CVE-2007-0202

SQL injection vulnerability in index.php in @lex Guestbook 4.0.2 and earlier, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the lang parameter...

7.5CVSS8.4AI score0.03679EPSS
Exploits1References9
CVE
CVE
added 2007/01/11 11:0 a.m.54 views

CVE-2007-0202

CVE-2007-0202 describes a SQL injection in the Web Guestbook app. Affected software: @lex Guestbook 4.0.2 and earlier, specifically via the index.php handler. Root cause: when magic_quotes_gpc is disabled, the parameter lang is unsafely used in a SQL query, enabling an attacker to inject arbitrar...

7.5CVSS8.4AI score0.03679EPSS
Exploits1References9Affected Software1
Rows per page
Query Builder