2 matches found
CVE-2008-0618
Multiple cross-site scripting XSS vulnerabilities in the DMSGuestbook 1.8.0 and 1.7.0 plugin for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 gbname, 2 gbemail, 3 gburl, and 4 gbmsg parameters to unspecified programs. NOTE: the provenance of this information i...
CVE-2008-0618
CVE-2008-0618 affects the WordPress DMSGuestbook plugin in versions 1.7.0 and 1.8.0. The issue is cross-site scripting (XSS) via the parameters gbname, gbemail, gburl, and gbmsg, allowing remote attackers to inject arbitrary scripts/HTML. Root cause is insecure handling of user-supplied input in ...