Vulnerabilities > Tuttophp > Pretty Guestbook
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2006-05-30 | CVE-2006-2637 | Products View.PHP Cross-Site Scripting vulnerability in Tuttophp Morris Guestbook, Pretty Guestbook and Smile Guestbook Cross-site scripting (XSS) vulnerability in view.php in TuttoPhp (1) Morris Guestbook 1, (2) Pretty Guestbook 1, and (3) Smile Guestbook 1 allows remote attackers to inject arbitrary web script or HTML via a javascript URI in the SRC attribute of an IMG element in the pagina parameter. network tuttophp | 4.3 |