Aspjar Guestbook@1.0 Security Vulnerabilities and Issues — Aspjar Guestbook@1.0 CVE List

Lucene search

AspjarAspjar Guestbook1.0

4 matches found

CVE•added 2005/04/27 4:0 a.m.•48 views

CVE-2005-0423

SQL injection vulnerability in login.asp in ASPjar Guestbook allows remote attackers to execute arbitrary SQL commands via the password field.

5CVSS8.5AI score0.00364EPSS

CVE•added 2005/04/27 4:0 a.m.•39 views

CVE-2005-0424

Unknown vulnerability in the delete.asp program in certain versions of ASPjar Guestbook allows remote attackers to delete messages. NOTE: there is insufficient information to know if this is the same issue as CVE-2002-1730.

5CVSS6.4AI score0.00425EPSS

CVE•added 2005/06/21 4:0 a.m.•36 views

CVE-2002-1729

Cross-site scripting vulnerability (XSS) in ASPjar Guestbook 1.00 allows remote attackers to execute arbitrary script as other users via the "web site" parameter in a guestbook message.

6.8CVSS6.8AI score0.01009EPSS

CVE•added 2005/06/21 4:0 a.m.•34 views

CVE-2002-1730

ASPjar Guestbook 1.00 allows remote attackers to delete arbitrary messages accessing the delete.asp administrative script with certain cookie values set to "true".

5CVSS7.2AI score0.00392EPSS