RSS   Vulnerabilities for 'Guestbookhost'   RSS

2006-02-03
 
CVE-2006-0542

CWE-Other
 

 
Multiple SQL injection vulnerabilities in config.php in NukedWeb GuestBookHost 2005.04.25 allow remote attackers to execute arbitrary SQL commands via the (1) email and (2) password parameters.

 
2003-12-31
 
CVE-2003-1293

 

 
Multiple cross-site scripting (XSS) vulnerabilities in NukedWeb GuestBookHost allow remote attackers to inject arbitrary web script or HTML via the (1) Name, (2) Email and (3) Message fields when signing the guestbook.

 


Copyright 2024, cxsecurity.com

 

Back to Top