CVE-2025-57263

An authenticated SQL injection vulnerability in VX Guestbook 1.07 allows attackers with admin access to inject malicious SQL payloads via the "word" POST parameter in the words.php admin panel...

CVE-2025-57263

The CVE-2025-57263 entry concerns VX Guestbook 1.07 with an authenticated SQL injection via the word POST parameter in the words.php admin panel. Attackers with admin privileges can inject malicious SQL payloads, indicating impact to data confidentiality, integrity, and availability as described ...