Vulnerabilities (CVE)

Filtered by vendor Xander Ladage Subscribe
Filtered by product Guestbookxl
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2006-2764 1 Xander Ladage 1 Guestbookxl 2024-11-21 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in GuestbookXL 1.3 allows remote attackers to inject arbitrary web script or HTML via a javascript URI in an IMG tag in a comment field to (1) guestwrite.php or (2) guestbook.php.