CVE-2006-3212

2006-06-2401:00:00

mitre

www.cve.org

5.6 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

68.9%

JSON

Cross-site scripting (XSS) vulnerability in sign.php in cjGuestbook 1.3 and earlier allows remote attackers to inject web script or HTML via the (1) name, (2) email, (3) add, and (4) wName parameters. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

References

secunia.com/advisories/20751

www.securityfocus.com/bid/18591

www.vupen.com/english/advisories/2006/2488

exchange.xforce.ibmcloud.com/vulnerabilities/27326