Vulnerabilities > Nukedweb

DATE CVE VULNERABILITY TITLE RISK
2006-02-04 CVE-2006-0542 SQL Injection vulnerability in Nukedweb Guestbookhost 20050425
Multiple SQL injection vulnerabilities in config.php in NukedWeb GuestBookHost 2005.04.25 allow remote attackers to execute arbitrary SQL commands via the (1) email and (2) password parameters.
network
low complexity
nukedweb
7.5
2003-12-31 CVE-2003-1293 HTML Injection vulnerability in Multiple GuestBookHost
Multiple cross-site scripting (XSS) vulnerabilities in NukedWeb GuestBookHost allow remote attackers to inject arbitrary web script or HTML via the (1) Name, (2) Email and (3) Message fields when signing the guestbook.
network
nukedweb
4.3