RSS   Podatności dla 'Myguestbook'   RSS

2005-07-06
 
CVE-2005-2162

 
 
PHP remote file inclusion vulnerability in form.inc.php3 in MyGuestbook 0.6.1 allows remote attackers to execute arbitrary PHP code via the lang parameter.

 
2003-12-31
 
CVE-2003-1241

 
 
Cross-site scripting vulnerability (XSS) in (1) admin_index.php, (2) admin_pass.php, (3) admin_modif.php, and (4) admin_suppr.php in MyGuestbook 3.0 allows remote attackers to execute arbitrary PHP code by modifying the location parameter to reference a URL on a remote web server that contains file.php via script injected into the pseudo, email, and message parameters.

 
2002-08-12
 
CVE-2002-0732

 
 
Cross-site scripting vulnerability in MyGuestbook 1.0 allows remote attackers to execute arbitrary script or inject HTML via fields such as (1) user name or (2) comments.

 

Copyright 2024, cxsecurity.com

 

Back to Top