3 matches found
CVE-2006-3568
Multiple cross-site scripting XSS vulnerabilities in guestbook.php in Fantastic Guestbook 2.0.1, and possibly earlier versions, allow remote attackers to inject arbitrary web script or HTML via the 1 firstname, 2 lastname, or 3 nickname parameters...
CVE-2006-3568
Multiple cross-site scripting XSS vulnerabilities in guestbook.php in Fantastic Guestbook 2.0.1, and possibly earlier versions, allow remote attackers to inject arbitrary web script or HTML via the 1 firstname, 2 lastname, or 3 nickname parameters...
CVE-2006-3568
CVE-2006-3568 affects Fantastic Guestbook, versions 2.0.1 and earlier, with a vulnerability in guestbook.php that allows cross-site scripting via the parameters: first_name, last_name, or nickname. The underlying issue is unsanitized user input in these fields, enabling arbitrary web script or HT...