Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site scripting vulnerability in signgbook.php for BG GuestBook 1.0 allows remote attackers to execute arbitrary Javascript via encoded tags such as <, >, and & in fields such as (1) name, (2) email, (3) AIM screen name, (4) website, (5) location, or (6) message.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
BG Guestbook存在跨站脚本执行漏洞
Vulnerability Description
BG Guestbook是一款免费的WEB应用程序,运行在多种Unix和Linux系统平台下,也可运行于Windows平台下,支持HTML或者FLASH效果,由PHP实现并可用MySQL数据库作后台支持。 BG Guestbook对用户输入过滤上存在漏洞,可使远程攻击者利用在相关输入栏中输入恶意脚本代码对其他浏览用户进行跨站脚本执行攻击。 BG Guestbook在任何输入栏中(容易email、aim、站点等)的输入信息没有充分过滤,可导致攻击者在这些栏的内容中放入脚本代码,当其他用户浏览相关此连接的时候
CVSS Information
N/A
Vulnerability Type
N/A