Vulnerabilities > CVE-2004-1213 - Cross-Site Scripting vulnerability in Advanced Guestbook Advanced Guestbook 2.2/2.3.1
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Cross-site scripting (XSS) vulnerability in index.php in Advanced Guestbook 2.3.1, 2.2, and possibly other versions allows remote attackers to inject arbitrary web script or HTML via the entry parameter.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 |
Exploit-Db
description | Advanced Guestbook 2.2/2.3 Cross-Site Scripting Vulnerability. CVE-2004-1213. Webapps exploit for php platform |
id | EDB-ID:24797 |
last seen | 2016-02-03 |
modified | 2004-12-02 |
published | 2004-12-02 |
reporter | Emile van Elen |
source | https://www.exploit-db.com/download/24797/ |
title | Advanced Guestbook 2.2/2.3 - Cross-Site Scripting Vulnerability |