Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-1557

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2005-1557
Last Modified 05 Sep 2008 04:49:27
Published 11 May 2005 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2005-1557

Summary

Multiple cross-site scripting (XSS) vulnerabilities in WebApp Guestbook PRO 3.2.1 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) title or (2) content of a message.

Vulnerable Systems

Application

  • Pixysoft Guestbook Pro 3.2.1


References

XF - webapp-php-guestbook-pro-xss(20544)

MISC - http://www.soulblack.com.ar/repo/papers/guesbookpro_advisory.txt

BID - 13593

OSVDB - 16349

SECTRACK - 1013940

SECUNIA - 15290

BUGTRAQ - 20050511 Guesbook Pro XSS & HTML Injection


Last Updated: 27 May 2016 10:40:12