12 matches found
VX Guestbook 安全漏洞
VX Guestbook is a guestbook program by the individual developer of VX Guestbook. A security vulnerability exists in VX Guestbook version 1.07, which originates from an SQL injection in the word parameter in the words.php admin panel, which could lead to malicious SQL payload injection...
CVE-2023-3476
A vulnerability was found in SimplePHPscripts GuestBook Script 2.2. It has been classified as problematic. This affects an unknown part of the file preview.php of the component URL Parameter Handler. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. I...
SyGuestBook A5 Cross-Site Scripting Vulnerability
SyGuestBook A5 is a PHP-based open source message board system . A cross-site scripting vulnerability exists in SyGuestBook A5 version 1.2 in index.php?c=admin&a=index. The vulnerability stems from the lack of proper validation of client-side data by the WEB application. An attacker can exploit...
Mrs. Shiromuku Perl CGI shiromuku(u1) GUESTBOOK Cross-Site Scripting Vulnerability
Mrs. Shiromuku Perl CGI shiromukuu1 GUESTBOOK is a message board software. A cross-site scripting vulnerability exists in Mrs. Shiromuku Perl CGI shiromukuu1GUESTBOOK version 1.62 and earlier. A remote attacker can exploit this vulnerability to inject arbitrary web script or HTML...
MakeBook 2.2 Form Field Input Validation Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/4996/info The MakeBook guestbook software does not sufficiently sanitize potentially dangerous characters from form field input. This may enable attackers to inject arbitrary HTML into form fields, which will be stored on...
tomsgb10-xss.txt
Software: Guestbook Title: Toms Gästebuch 1.00 Version: 1.0 Type: XSS Date: Sat Aug 11 21:52:08 CEST 2007 Vendor: Fitz Thomas Page: http://www.toms-seiten.at/ vulnerability: ---------------------------- http://example.com/form.php?action=show&homepage=XSS&mail=XSS&name=XSS...
@lexPHPTeam @lex Guestbook 3.12 - PHP Remote File Inclusion
@lexPHPTeam @lex Guestbook 3.12 - PHP Remote File Inclusion source: https://www.securityfocus.com/bid/11260/info A vulnerability is reported to exist in the @lexPHPTeam @lex Guestbook software that may allow an attacker to include malicious PHP files containing arbitrary code to be executed on a...
MakeBook 2.2 - Form Field Input Validation
MakeBook 2.2 - Form Field Input Validation source: https://www.securityfocus.com/bid/4996/info The MakeBook guestbook software does not sufficiently sanitize potentially dangerous characters from form field input. This may enable attackers to inject arbitrary HTML into form fields, which will be...
MakeBook 2.2 - Form Field Input Validation
source: https://www.securityfocus.com/bid/4996/info The MakeBook guestbook software does not sufficiently sanitize potentially dangerous characters from form field input. This may enable attackers to inject arbitrary HTML into form fields, which will be stored on guestbook pages. Additionally, it...
Philip Chinery's Guestbook 1.1 - Script Injection
source: https://www.securityfocus.com/bid/4566/info Philip Chinery's Guestbook is freely available guestbook software. It will run on most Unix and Linux variants, as well as Microsoft Windows operating systems. Philip Chinery's Guestbook does not filter script code from form fields. As a result,...
XGB Guestbook 1.2 - User-Embedded Scripting
XGB Guestbook 1.2 - User-Embedded Scripting source: https://www.securityfocus.com/bid/4513/info xGB is guestbook software. It is written in PHP and will run on most Unix and Linux variants as well as Microsoft Windows operating systems. xGB allows users to post images in guestbook entries by usin...
XGB Guestbook 1.2 - User-Embedded Scripting
source: https://www.securityfocus.com/bid/4513/info xGB is guestbook software. It is written in PHP and will run on most Unix and Linux variants as well as Microsoft Windows operating systems. xGB allows users to post images in guestbook entries by using special syntax to denote a link to an imag...