Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-1824

Overview

Vulnerability Score 1.2 1.2
CVE Id CVE-2006-1824
Last Modified 07 Mar 2011 09:34:22
Published 18 Apr 2006 06:02:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity HIGH
Authentication NONE

CVE-2006-1824

Summary

Multiple cross-site scripting (XSS) vulnerabilities in PhpGuestbook.php in PhpGuestbook 1.0 allow remote attackers to inject arbitrary web script or HTML via the (1) Name, (2) Website, and (3) Comment parameter.

Vulnerable Systems

Application

  • Phpguestbook 1.0


References

VUPEN - ADV-2006-1422

XF - phpguestbook-script-xss(25850)

BID - 17594

BID - 17537

BUGTRAQ - 20060415 PhpGuestbook <= 1.0 XSS

SECUNIA - 19669

MISC - http://pridels0.blogspot.com/2006/04/phpguestbook-v10-script-insertion.html


Last Updated: 27 May 2016 10:42:14