Lars Ellingsen guestserver.cgi allows remote attackers to execute arbitrary commands via shell metacharacters in the "email" parameter.
CVSS 2.0
Severity: HIGH
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| lars_ellingsen | guestserver | * |
Multiple cross-site scripting (XSS) vulnerabilities in guestbook.cgi in Lars Ellingsen Guestserver 4.13 and earlier allow remote attackers to inject arbitrary web script or HTML via unspecified message fields.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| lars_ellingsen | guestserver | 3.42 |
| lars_ellingsen | guestserver | 3.60 |
| lars_ellingsen | guestserver | 3.83 |
| lars_ellingsen | guestserver | 3.44 |
| lars_ellingsen | guestserver | 4.13 |
| lars_ellingsen | guestserver | 3.10 |
| lars_ellingsen | guestserver | 4.07 |
| lars_ellingsen | guestserver | 2.07 |
| lars_ellingsen | guestserver | 3.48 |
| lars_ellingsen | guestserver | 3.01 |
| lars_ellingsen | guestserver | 3.40 |
| lars_ellingsen | guestserver | 4.01 |
| lars_ellingsen | guestserver | 2.10 |
| lars_ellingsen | guestserver | 3.22 |
| lars_ellingsen | guestserver | 3.34 |
| lars_ellingsen | guestserver | 4.10 |
| lars_ellingsen | guestserver | 3.30 |
| lars_ellingsen | guestserver | 4 |
| lars_ellingsen | guestserver | 2.90 |
| lars_ellingsen | guestserver | 3.45 |
| lars_ellingsen | guestserver | 3.02 |
| lars_ellingsen | guestserver | 3.21 |
| lars_ellingsen | guestserver | 3.62 |
| lars_ellingsen | guestserver | 4.09 |
| lars_ellingsen | guestserver | 3.32 |
| lars_ellingsen | guestserver | 3.41 |
| lars_ellingsen | guestserver | 3.20 |
| lars_ellingsen | guestserver | 4.05 |
| lars_ellingsen | guestserver | 3.82 |
| lars_ellingsen | guestserver | 3.80 |
| lars_ellingsen | guestserver | 3.81 |
| lars_ellingsen | guestserver | 3.46 |
| lars_ellingsen | guestserver | 3.47 |
| lars_ellingsen | guestserver | 3.33 |
| lars_ellingsen | guestserver | 4.06 |
| lars_ellingsen | guestserver | 3.66 |
| lars_ellingsen | guestserver | 3.65 |
| lars_ellingsen | guestserver | 3.03 |
| lars_ellingsen | guestserver | 3.43 |
| lars_ellingsen | guestserver | 3.31 |
| lars_ellingsen | guestserver | 3.36 |
| lars_ellingsen | guestserver | 4.08 |
| lars_ellingsen | guestserver | 3.35 |