Matt Wright guestbook.pl Arbitrary Command Execution

No description provided by source. $Id: guestbookssiexec.rb 9671 2010-07-03 06:21:31Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of...

Matt Wright guestbook.pl Arbitrary Command Execution

The Matt Wright guestbook.pl 'Matt Wright guestbook.pl Arbitrary Command Execution', 'Description' = %q The Matt Wright guestbook.pl 'aushack' , 'License' = MSFLICENSE, 'References' = 'CVE...

CVE-2002-0730

CVE-2002-0730 : Cross-site scripting in Philip Chinery’s Guestbook 1.1 (guestbook.pl) allows remote attackers to inject Javascript/HTML via form fields such as Name, EMail, or Homepage. The linked sources (NVD/CVE records) confirm the vulnerability and its existence, but do not provide specific e...

CVE-2002-0730

Cross-site scripting vulnerability in guestbook.pl for Philip Chinery's Guestbook 1.1 allows remote attackers to execute Javascript or HTML via fields such as 1 Name, 2 EMail, or 3 Homepage...

CVE-1999-1053

CVE-1999-1053 relates to the guestbook.pl CGI which sanitizes Server-Side Includes by stripping text between . The provided data confirms a vulnerability where this sanitization is incomplete, allowing remote attackers to execute arbitrary commands when guestbook.pl runs on Apache 1.3.9 and poten...

CVE-1999-1053

guestbook.pl cleanses user-inserted SSI commands by removing text between "" separators, which allows remote attackers to execute arbitrary commands when guestbook.pl is run on Apache 1.3.9 and possibly other versions, since Apache allows other closing sequences besides "--"...