Phpbb Advanced Guestbook Security Vulnerabilities and Issues — Phpbb Advanced Guestbook CVE List

Phpbb GroupPhpbb Advanced Guestbook

3 matches found

CVE•added 2006/05/03 10:0 a.m.•82 views

CVE-2006-2152

CVE-2006-2152 affects phpBB Advanced Guestbook 2.4.0 and earlier, where admin/addentry.php fails to sanitize input to the phpbb_root_path parameter before using it in PHP include(). This PHP remote file inclusion vulnerability arises when register_globals is enabled, allowing an unauthenticated a...

7.5CVSS6.9AI score0.12101EPSS

Web

CVE•added 2007/02/27 6:0 p.m.•32 views

CVE-2006-7076

CVE-2006-7076 affects Advanced Guestbook 2.4 for phpBB, with a cross-site scripting flaw in guestbook.php that lets remote attackers inject arbitrary script or HTML via the entry parameter. The issue is identified as XSS and notes indicate it might originate from SQL injection. Documented impact ...

4.3CVSS6.8AI score0.00355EPSS

CVE•added 2007/02/27 6:0 p.m.•32 views

CVE-2006-7077

Technical details about CVE-2006-7077 are not provided in the connected documents. Available sources list a SQL injection in Advanced Guestbook 2.4 for phpBB, but do not include explicit product/version specifics or fixes.

6.8CVSS8.8AI score0.00887EPSS