CVE-2019-13950

index.php?c=admin&a=index in SyGuestBook A5 Version 1.2 has stored XSS via a reply to a comment...

Cross-Site Scripting Vulnerability in SyGuestBook

SyGuestBook is a multifunctional message board system that continues to be developed with php+MySQL. SyGuestBook version 1.1 suffers from a cross-site scripting vulnerability, which is caused by the program's failure to effectively filter user-submitted data. An attacker can exploit the...