Techno Dreams Guest Book@* Security Vulnerabilities and Issues — Techno Dreams Guest Book@* CVE List

Lucene search

Techno DreamsTechno Dreams Guest Book*

3 matches found

CVE•added 2006/06/06 8:6 p.m.•63 views

CVE-2006-2837

Cross-site scripting (XSS) vulnerability in Techno Dreams Guest Book allows remote attackers to inject arbitrary web script or HTML via certain comment fields in the "Sign Our GuestBook" page, probably the x_Comments parameter to guestbookadd.asp.

4.3CVSS5.7AI score0.00346EPSS

CVE•added 2006/11/01 12:7 a.m.•41 views

CVE-2006-5640

SQL injection vulnerability in guestbookview.asp in Techno Dreams Guest Book 1.0 earlier allows remote attackers to execute arbitrary SQL commands via the key parameter.

7.5CVSS8.8AI score0.00528EPSS

CVE•added 2005/10/30 2:34 p.m.•39 views

CVE-2005-3384

SQL injection vulnerability in Techno Dreams Guest Book script allows remote attackers to execute arbitrary SQL commands and bypass authentication via the userid parameter in admin/login.asp.

7.5CVSS9AI score0.01398EPSS