CVE-2009-4678
Winn Guestbook 2.4 is affected by a Cross-site scripting (XSS) vulnerability in index.php, exploitable via PATH_INFO to inject arbitrary web script or HTML. The provided documents identify the vulnerable component as Winn Guestbook 2.4 (index.php) and the exploit vector PATH_INFO but do not inclu...