2 matches found
CVE-2005-4649
CVE-2005-4649 affects Advanced Guestbook 2.2 and 2.3.1, with XSS via (1) entry parameter in index.php and (2) gb_id in comment.php. Root cause: insufficient input sanitization on these parameters, allowing remote attackers to inject arbitrary HTML/JS. Index.php/entry vector may be related to CVE-...
CVE-2005-4649
Multiple cross-site scripting XSS vulnerabilities in Advanced Guestbook 2.2 and 2.3.1 allow remote attackers to inject arbitrary web script or HTML via 1 the entry parameter in index.php and 2 the gbid parameter in comment.php. NOTE: The index.php/entry vector might be resultant from CVE-2005-154...