Max's Guestbook Security Vulnerabilities

CVE-2017-20089

A vulnerability was found in Gwolle Guestbook Plugin 1.7.4. It has been rated as problematic. This issue affects some unknown processing. The manipulation leads to basic cross site scripting. The attack may be initiated...

Cross site scripting

A vulnerability was found in Gwolle Guestbook Plugin 1.7.4. It has been rated as problematic. This issue affects some unknown processing. The manipulation leads to basic cross site scripting. The attack may be initiated...

CVE-2017-20089 Gwolle Guestbook Plugin cross site scriting

A vulnerability was found in Gwolle Guestbook Plugin 1.7.4. It has been rated as problematic. This issue affects some unknown processing. The manipulation leads to basic cross site scripting. The attack may be initiated...

WordPress Gwolle Guestbook Plugin Cross-Site Scripting Vulnerability (CNVD-2021-103362)

WordPress is the Wordpress Foundation's suite of blogging platforms developed using the PHP language. The platform supports personal blogging sites on PHP and MySQL servers.The WordPress Gwolle Guestbook plugin has a cross-site scripting vulnerability in versions prior to 4.2.0, which stems from...

CVE-2021-24980

The Gwolle Guestbook WordPress plugin before 4.2.0 does not sanitise and escape the gwolle_gb_user_email parameter before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting issue in an admin...

CVE-2021-24980

The Gwolle Guestbook WordPress plugin before 4.2.0 does not sanitise and escape the gwolle_gb_user_email parameter before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting issue in an admin...

Cross site scripting

The Gwolle Guestbook WordPress plugin before 4.2.0 does not sanitise and escape the gwolle_gb_user_email parameter before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting issue in an admin...

CVE-2021-24980 Gwolle Guestbook < 4.2.0 - Reflected Cross-Site Scripting

The Gwolle Guestbook WordPress plugin before 4.2.0 does not sanitise and escape the gwolle_gb_user_email parameter before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting issue in an admin...

Admidio Cross-Site Scripting Vulnerability (CNVD-2021-100289)

Admidio is an open source membership management system from the Admidio team. The system supports member list, event management, guestbook, photo album and downloads.A cross-site scripting vulnerability exists in versions of Admidio prior to 4.0.12, which stems from redirect.php failing to...

WordPress Gwolle Guestbook plugin <= 4.1.2 - Reflected Cross-Site Scripting (XSS) vulnerability

Reflected Cross-Site Scripting (XSS) vulnerability discovered by JrXnm in WordPress Gwolle Guestbook plugin (versions &lt;= 4.1.2). Solution Update the WordPress Gwolle Guestbook plugin to the latest available version (at least...

Gwolle Guestbook < 4.2.0 - Reflected Cross-Site Scripting

The plugin does not sanitise and escape the gwolle_gb_user_email parameter before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting issue in an admin...

Gwolle Guestbook < 4.2.0 - Reflected Cross-Site Scripting

The plugin does not sanitise and escape the gwolle_gb_user_email parameter before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting issue in an admin page...

CVE-2020-18654

Cross Site Scripting (XSS) in Wuzhi CMS v4.1.0 allows remote attackers to execute arbitrary code via the "Title" parameter in the component...

CVE-2020-18654

Cross Site Scripting (XSS) in Wuzhi CMS v4.1.0 allows remote attackers to execute arbitrary code via the "Title" parameter in the component...

CVE-2020-18654

Cross Site Scripting (XSS) in Wuzhi CMS v4.1.0 allows remote attackers to execute arbitrary code via the "Title" parameter in the component...

Cross site scripting

Cross Site Scripting (XSS) in Wuzhi CMS v4.1.0 allows remote attackers to execute arbitrary code via the "Title" parameter in the component...

CVE-2020-18654

Cross Site Scripting (XSS) in Wuzhi CMS v4.1.0 allows remote attackers to execute arbitrary code via the "Title" parameter in the component...

Advanced Guestbook 2.4.4 Cross Site Scripting

...

Advanced Guestbook 2.4.4 - (Smilies) Persistent Cross-Site Scripting Vulnerability

...

Advanced Guestbook 2.4.4 - &#039;Smilies&#039; Persistent Cross-Site Scripting (XSS)

...

CVE-2020-19274

A Cross SIte Scripting (XSS) vulnerability exists in Dhcms 2017-09-18 in guestbook via the message board, which could let a remote malicious user execute arbitrary...

CVE-2020-19274

A Cross SIte Scripting (XSS) vulnerability exists in Dhcms 2017-09-18 in guestbook via the message board, which could let a remote malicious user execute arbitrary...

Cross site scripting

A Cross SIte Scripting (XSS) vulnerability exists in Dhcms 2017-09-18 in guestbook via the message board, which could let a remote malicious user execute arbitrary...

CVE-2020-19274

A Cross SIte Scripting (XSS) vulnerability exists in Dhcms 2017-09-18 in guestbook via the message board, which could let a remote malicious user execute arbitrary...

Joomla Easy GuestBook 1.0 SQL Injection

...

Typo3 CMS Modern Guestbook tx_veguestbook_pi1 3.3.0 SQL Injection

...

Joomla EasyBookReloaded 3.3.2 SQL Injection

...

Joomla PhocaGuestBook 3.0.8 Database Disclosure / SQL Injection

...

Joomla JamBook 1.5 SQL Injection

...

MGB OpenSource Guestbook 0.7.0.2 SQL Injection

...

MGB OpenSource Guestbook 0.7.0.2 - &#039;id&#039; SQL Injection

...

MGB OpenSource Guestbook 0.7.0.2 - id SQL Injection Vulnerability

Exploit for php platform in category web...

MGB OpenSource Guestbook 0.7.0.2 - id SQL Injection

MGB OpenSource Guestbook 0.7.0.2 - id SQL...

livepages.de XSS vulnerability

Open Bug Bounty ID: OBB-683333 Description| Value ---|--- Affected Website:| livepages.de Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS (Cross Site Scripting) / CWE-79 CVSSv3 Score:| 6.1...

CVE-2018-17884

XSS exists in admin/gb-dashboard-widget.php in the Gwolle Guestbook (gwolle-gb) plugin before 2.5.4 for WordPress via the PATH_INFO to...

CVE-2018-17884

XSS exists in admin/gb-dashboard-widget.php in the Gwolle Guestbook (gwolle-gb) plugin before 2.5.4 for WordPress via the PATH_INFO to...

Cross site scripting

XSS exists in admin/gb-dashboard-widget.php in the Gwolle Guestbook (gwolle-gb) plugin before 2.5.4 for WordPress via the PATH_INFO to...

CVE-2018-17884

XSS exists in admin/gb-dashboard-widget.php in the Gwolle Guestbook (gwolle-gb) plugin before 2.5.4 for WordPress via the PATH_INFO to...

the-redrooster.de XSS vulnerability

Open Bug Bounty ID: OBB-662825 Description| Value ---|--- Affected Website:| the-redrooster.de Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Other Vulnerability Type:| XSS (Cross Site Scripting) / CWE-79 CVSSv3 Score:| 6.1...

hooksiel-langedrift.de XSS vulnerability

Open Bug Bounty ID: OBB-662822 Description| Value ---|--- Affected Website:| hooksiel-langedrift.de Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Other Vulnerability Type:| XSS (Cross Site Scripting) / CWE-79 CVSSv3 Score:| 6.1...

WordPress Gwolle Guestbook plugin <= 2.5.3 - Cross-Site Scripting (XSS) vulnerability

Cross-Site Scripting (XSS) vulnerability found by DefenseCode in WordPress Gwolle Guestbook plugin (versions &lt;= 2.5.3). Solution Update the WordPress Gwolle Guestbook plugin to the latest available version (at least...

WordPress Gwolle Guestbook plugin <= 2.5.3 - Cross-Site Scripting (XSS) vulnerability

Cross-Site Scripting (XSS) vulnerability found by DefenseCode in WordPress Gwolle Guestbook plugin (versions &lt;= 2.5.3). Solution Update the WordPress Gwolle Guestbook plugin to the latest available version (at least...

Gwolle Guestbook <= 2.5.3 - Cross-Site Scripting (XSS)

The Gwolle Guestbook WordPress plugin was affected by a Cross-Site Scripting (XSS) security...

WordPress Gwolle Guestbook 2.5.3 Cross Site Scripting Vulnerability

Exploit for php platform in category web...

WordPress Gwolle Guestbook 2.5.3 Cross Site Scripting

...

rettet-den-tagi.ch XSS vulnerability

Open Bug Bounty ID: OBB-637178 Description| Value ---|--- Affected Website:| rettet-den-tagi.ch Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS (Cross Site Scripting) / CWE-79 CVSSv3 Score:| 6.1...

strongbowspub.de XSS vulnerability

Open Bug Bounty ID: OBB-636245 Description| Value ---|--- Affected Website:| strongbowspub.de Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS (Cross Site Scripting) / CWE-79 CVSSv3 Score:| 6.1...

enrique-iglesias.net Open Redirect vulnerability

Open Bug Bounty ID: OBB-636202 Description| Value ---|--- Affected Website:| enrique-iglesias.net Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| Open Redirect / CWE-601 CVSSv3 Score:| 3.4...

steverangel.de XSS vulnerability

Open Bug Bounty ID: OBB-627854 Description| Value ---|--- Affected Website:| steverangel.de Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS (Cross Site Scripting) / CWE-79 CVSSv3 Score:| 6.1...

rezo.ge XSS vulnerability

Open Bug Bounty ID: OBB-612479 Description| Value ---|--- Affected Website:| rezo.ge Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS (Cross Site Scripting) / CWE-79 CVSSv3 Score:| 6.1...