Vulnerabilities > CVE-2006-1913 - Cross-Site Scripting vulnerability in Jax Guestbook Page Parameter

047910
CVSS 6.8 - MEDIUM
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
jax-scripts
exploit available

Summary

Cross-site scripting (XSS) vulnerability in jax_guestbook.php in Jax Guestbook 3.1, 3.31, and 3.50 allows remote attackers to inject arbitrary web script or HTML via the page parameter.

Vulnerable Configurations

Part Description Count
Application
Jax_Scripts
1

Exploit-Db

descriptionJax Guestbook 3.50 Page Parameter Cross-Site Scripting Vulnerability. CVE-2006-1913. Webapps exploit for php platform
idEDB-ID:27664
last seen2016-02-03
modified2006-04-17
published2006-04-17
reporterALMOKANN3
sourcehttps://www.exploit-db.com/download/27664/
titleJax Guestbook 3.50 Page Parameter Cross-Site Scripting Vulnerability