2 matches found
netvigilance-sa10.txt
netVigilance Security Advisory 10 dtguestbook version 1.0f XSS vulnerability Description: dtguestbook is a fully-featured message board system with admin interface. Due to program flaws it is possible for the remote attacker to conduct XSS attacks. The remote attacker can convince the victim to...
CVE-2006-6487
CVE-2006-6487: XSS in dt_guestbook 1.0f (index.php) when PHP register_globals is On. The vulnerability allows remote attackers to inject arbitrary script via the error[] parameter, enabling a reflected XSS in the victim’s browser. Affected product: dt_guestbook 1.0f; attack requires On register_g...