2 matches found
CVE-2008-7140
Multiple cross-site scripting XSS vulnerabilities in @lex Guestbook 4.0.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 languagesetup parameter to setup.php or 2 test parameter to index.php. NOTE: the provenance of this information is unknown; the details are...
CVE-2008-7140
CVE-2008-7140 involves multiple XSS vulnerabilities in the @lex Guestbook package (version 4.0.5 and earlier). The flaws allow remote attackers to inject arbitrary web script or HTML by supplying (1) the language_setup parameter to setup.php or (2) the test parameter to index.php. The posted data...