6 matches found
EUVD-2002-0722
Malware in sbrugna...
FTLS GuestBook 1.1 Script Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/6686/info Guestbook does not adequately filter HTML tags from various fields. This may enable an attacker to inject arbitrary script code into pages that are generated by the guestbook. The attacker's script code may be...
Philip Chinery's Guestbook 1.1 Script Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/4566/info Philip Chinery's Guestbook is freely available guestbook software. It will run on most Unix and Linux variants, as well as Microsoft Windows operating systems. Philip Chinery's Guestbook does not filter script...
CVE-2003-1348
The CVE-2003-1348 entry describes a Cross-site Scripting (XSS) vulnerability in the guestbook.cgi component of ftls.org Guestbook 1.1. The issue allows remote attackers to inject arbitrary web script or HTML via the (1) comment, (2) name, or (3) title fields. Public references in the initial docu...
CVE-2002-0730
Cross-site scripting vulnerability in guestbook.pl for Philip Chinery's Guestbook 1.1 allows remote attackers to execute Javascript or HTML via fields such as 1 Name, 2 EMail, or 3 Homepage...
CVE-2002-0730
CVE-2002-0730 : Cross-site scripting in Philip Chinery’s Guestbook 1.1 (guestbook.pl) allows remote attackers to inject Javascript/HTML via form fields such as Name, EMail, or Homepage. The linked sources (NVD/CVE records) confirm the vulnerability and its existence, but do not provide specific e...