Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Toms Gaestebuch 1.00 allow remote attackers to inject arbitrary web script or HTML via the 1 homepage, 2 mail, and 3 name parameters in a show action to a form.php; the 4 language and 5 anzeigebreite parameters to b admin/header.php; and the 6...