CVE-2008-7140
CVE-2008-7140 involves multiple XSS vulnerabilities in the @lex Guestbook package (version 4.0.5 and earlier). The flaws allow remote attackers to inject arbitrary web script or HTML by supplying (1) the language_setup parameter to setup.php or (2) the test parameter to index.php. The posted data...