Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-1697

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2006-1697
Last Modified 07 Mar 2011 09:33:36
Published 11 Apr 2006 06:02:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2006-1697

Summary

Cross-site scripting (XSS) vulnerability in Matt Wright Guestbook 2.3.1 allows remote attackers to execute arbitrary web script or HTML via the (1) Your Name, (2) E-Mail, or (3) Comments fields when posting a message.

Vulnerable Systems

Application

  • Matt Wright Guestbook 2.3.1


References

VUPEN - ADV-2006-1287

BID - 17438

BUGTRAQ - 20060408 Matt Wright Guestbook Xss Script İnjection

OSVDB - 24479

SECUNIA - 19586

MISC - http://liz0zim.no-ip.org/mattguestbook.html

XF - guestbook-guestbook-parameters-xss(25697)

SREASON - 681


Last Updated: 27 May 2016 10:42:10