Show filters
217 Total Results
Displaying 211-217 of 217
Sort by:
Attacker Value
Unknown
CVE-2002-0732
Disclosure Date: August 12, 2002 (last updated February 22, 2025)
Cross-site scripting vulnerability in MyGuestbook 1.0 allows remote attackers to execute arbitrary script or inject HTML via fields such as (1) user name or (2) comments.
0
Attacker Value
Unknown
CVE-2002-0551
Disclosure Date: July 03, 2002 (last updated February 22, 2025)
Cross-site scripting vulnerability in Dynamic Guestbook 3.0 allows remote attackers to execute code in clients who access guestbook pages via the parameters (1) name, (2) mail, or (3) kommentar.
0
Attacker Value
Unknown
CVE-2002-0550
Disclosure Date: July 03, 2002 (last updated February 22, 2025)
Dynamic Guestbook 3.0 allows remote attackers to execute arbitrary code via shell metacharacters in the gbdaten parameter.
0
Attacker Value
Unknown
CVE-1999-1053
Disclosure Date: September 13, 1999 (last updated February 22, 2025)
guestbook.pl cleanses user-inserted SSI commands by removing text between "<!--" and "-->" separators, which allows remote attackers to execute arbitrary commands when guestbook.pl is run on Apache 1.3.9 and possibly other versions, since Apache allows other closing sequences besides "-->".
0
Attacker Value
Unknown
CVE-1999-0287
Disclosure Date: April 09, 1999 (last updated February 22, 2025)
Vulnerability in the Wguest CGI program.
0
Attacker Value
Unknown
CVE-1999-0467
Disclosure Date: April 01, 1999 (last updated February 22, 2025)
The Webcom CGI Guestbook programs wguest.exe and rguest.exe allow a remote attacker to read arbitrary files using the "template" parameter.
0
Attacker Value
Unknown
CVE-1999-0237
Disclosure Date: September 01, 1997 (last updated February 22, 2025)
Remote execution of arbitrary commands through Guestbook CGI program.
0
