Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-5103

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2012-5103
Last Modified 24 Sep 2012 12:00:00
Published 23 Sep 2012 01:55:07
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2012-5103

Summary

Multiple cross-site scripting (XSS) vulnerabilities in action/add-submit.php in Ggb Guestbook 0.3.1 allow remote attackers to inject arbitrary web script or HTML via the (1) url or (2) message parameter.

Vulnerable Systems

Application

  • Dnelubin Gelinsguestbook 0.3.1


References

XF - ggbguestbook-addsubmit-xss(72136)

BID - 51285

OSVDB - 78135

SECUNIA - 47470

MISC - http://packetstormsecurity.org/files/108389/ggbguestbook-xss.txt

MISC - http://code.google.com/p/ggbook/issues/detail?id=17

BUGTRAQ - 20120105 Ggb Guestbook - XSS Vulnerabilities


Last Updated: 27 May 2016 11:00:48