MidnightBSD

Advisories for myphp_guestbook

CVE-2006-3062 LOW

Cross-site scripting (XSS) vulnerability in index.php in myPHP Guestbook 2.0.4 and earlier allows remote attackers to inject arbitrary web script or HTML via the lang parameter.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
myphp_guestbook myphp_guestbook 2.0.4
CVE-2006-3063 LOW

Multiple cross-site scripting (XSS) vulnerabilities in myPHP Guestbook 1.x through 2.0.0-r1 and before 2.0.1 RC5 allow remote attackers to inject arbitrary web script or HTML via the (1) comment, (2) email, (3) homepage, (4) id, (5) name, and (6) text parameters in (a) index.php, the (7) comment, (8) email, (9) homepage, (10) number, (11) name, and (12) text parameters in (b) admin/guestbook.php, and the (13) email, (14) homepage, (15) icq, (16) name, and (17) text parameters in (c) admin/edit.php.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
myphp_guestbook myphp_guestbook 2.0.0_rc1
myphp_guestbook myphp_guestbook 1.0
myphp_guestbook myphp_guestbook 2.0.0_rc3
myphp_guestbook myphp_guestbook 2.0.0_beta
myphp_guestbook myphp_guestbook 1.9.2
myphp_guestbook myphp_guestbook 2.0.0-r1
myphp_guestbook myphp_guestbook 2.0.1_rc1
myphp_guestbook myphp_guestbook 2.0.0_rc2
myphp_guestbook myphp_guestbook 1.9
myphp_guestbook myphp_guestbook 2.0.0_rc4
myphp_guestbook myphp_guestbook 2.0.1_rc2
myphp_guestbook myphp_guestbook 2.0.0_alpha
myphp_guestbook myphp_guestbook 1.8
myphp_guestbook myphp_guestbook 2.0.1_beta
myphp_guestbook myphp_guestbook 2.0.1_rc4
myphp_guestbook myphp_guestbook 1.8.3
myphp_guestbook myphp_guestbook 2.0.0
myphp_guestbook myphp_guestbook 2.0.1_rc3