Cross-site scripting (XSS) vulnerability in index.php in Advanced Guestbook 2.3.1, 2.2, and possibly other versions allows remote attackers to inject arbitrary web script or HTML via the entry parameter.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Advanced_guestbook | Advanced_guestbook | 2.2 (including) | 2.2 (including) |
| Advanced_guestbook | Advanced_guestbook | 2.3.1 (including) | 2.3.1 (including) |
References
- http://marc.info/?l=bugtraq\u0026m=110206527624612\u0026w=2
- http://marc.info/?l=bugtraq\u0026m=110238530129498\u0026w=2
- http://www.securityfocus.com/bid/11798
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18334
- http://marc.info/?l=bugtraq\u0026m=110206527624612\u0026w=2
- http://marc.info/?l=bugtraq\u0026m=110238530129498\u0026w=2
- http://www.securityfocus.com/bid/11798
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18334