13 matches found
EUVD-2011-5101
Malware in sbrugna...
EUVD-2009-3310
Malware in sbrugna...
CVE-2024-12892
CVE-2024-12892 affects code-projects Online Exam Mastering System 1.0. The vulnerability is in the file /sign.php?q=account.php, where manipulating the arguments name, gender, and college leads to cross-site scripting. The issue is exploitable remotely and the public disclosure has occurred. Some...
CVE-2011-5201
Multiple SQL injection vulnerabilities in sign.php in tinyguestbook allow remote attackers to execute arbitrary SQL commands via the 1 name and 2 msg parameters. NOTE: some of these details are obtained from third party information...
CVE-2011-5199
Cross-site scripting XSS vulnerability in sign.php in tinyguestbook allows remote attackers to inject arbitrary web script or HTML via the msg parameter...
Sql injection
Multiple SQL injection vulnerabilities in sign.php in tinyguestbook allow remote attackers to execute arbitrary SQL commands via the 1 name and 2 msg parameters. NOTE: some of these details are obtained from third party information...
CVE-2011-5201
Multiple SQL injection vulnerabilities in sign.php in tinyguestbook allow remote attackers to execute arbitrary SQL commands via the 1 name and 2 msg parameters. NOTE: some of these details are obtained from third party information...
CVE-2011-5199
The CVE-2011-5199 entry describes a Cross-site Scripting (XSS) vulnerability in the TinyGuestbook project, specifically in sign.php where the msg parameter can be exploited to inject arbitrary web script or HTML. The available sources consistently identify the vulnerable component as sign.php wit...
CVE-2011-5199
Cross-site scripting XSS vulnerability in sign.php in tinyguestbook allows remote attackers to inject arbitrary web script or HTML via the msg parameter...
CVE-2009-3328
WX-Guestbook 1.1.208 contains a cross-site scripting (XSS) flaw in sign.php, exploitable via the sName parameter (the name field). The vulnerability allows remote script or HTML injection. Root cause: insufficient input sanitization on sName leading to script execution in the browser context. Doc...
CVE-2006-3212
The CVE-2006-3212 entry documents a cross-site scripting (XSS) vulnerability in cjGuestbook 1.3 and earlier, specifically in sign.php. The underlying issue allows remote attackers to inject web script or HTML through one of four user-supplied fields: name, email, add, and wName. The affected comp...
CVE-2006-3212
Cross-site scripting XSS vulnerability in sign.php in cjGuestbook 1.3 and earlier allows remote attackers to inject web script or HTML via the 1 name, 2 email, 3 add, and 4 wName parameters. NOTE: the provenance of this information is unknown; the details are obtained solely from third party...
CVE-2006-3211
The CVE-2006-3211 issue affects cjGuestbook versions 1.3 and earlier, located in sign.php. It is a cross-site scripting (XSS) vulnerability that lets remote attackers inject JavaScript by using a javascript: URI in an img BBCode tag within the comments parameter. Impact is partial integrity compr...