3 matches found
CVE-2002-2376
Cross-site scripting XSS vulnerability in E-Guestsign.pl in E-Guest 1.1 allows remote attackers to inject arbitrary SSI directives, web script, and HTML via the 1 full name, 2 email, 3 homepage, and 4 location parameters. NOTE: this issue might overlap CVE-2005-1605...
CVE-2005-1605
The entry CVE-2005-1605 describes a Cross-site Scripting (XSS) vulnerability in the guestbook of SiteStudio 1.6, exploitable via the name field to either psoft.guestbook.GuestBookServ (Standalone Site Studio) or E-Guest_sign.pl (Integrated Site Studio with H-Sphere). The vulnerability is triggere...
CVE-2005-1605
Cross-site scripting XSS vulnerability in the guestbook for SiteStudio 1.6 allows remote attackers to inject arbitrary web script or HTML via the name field to 1 psoft.guestbook.GuestBookServ in Standalone Site Studio or 2 E-Guestsign.pl in Integrated Site Studio with H-Sphere...