Total
4 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2005-0424 | 1 Aspjar | 1 Aspjar Guestbook | 2024-11-20 | 5.0 MEDIUM | N/A |
Unknown vulnerability in the delete.asp program in certain versions of ASPjar Guestbook allows remote attackers to delete messages. NOTE: there is insufficient information to know if this is the same issue as CVE-2002-1730. | |||||
CVE-2005-0423 | 1 Aspjar | 1 Aspjar Guestbook | 2024-11-20 | 5.0 MEDIUM | N/A |
SQL injection vulnerability in login.asp in ASPjar Guestbook allows remote attackers to execute arbitrary SQL commands via the password field. | |||||
CVE-2002-1730 | 1 Aspjar | 1 Aspjar Guestbook | 2024-11-20 | 5.0 MEDIUM | N/A |
ASPjar Guestbook 1.00 allows remote attackers to delete arbitrary messages accessing the delete.asp administrative script with certain cookie values set to "true". | |||||
CVE-2002-1729 | 1 Aspjar | 1 Aspjar Guestbook | 2024-11-20 | 6.8 MEDIUM | N/A |
Cross-site scripting vulnerability (XSS) in ASPjar Guestbook 1.00 allows remote attackers to execute arbitrary script as other users via the "web site" parameter in a guestbook message. |