N/A

Multiple cross-site scripting (XSS) vulnerabilities in myPHP Guestbook 1.x through 2.0.0-r1 and before 2.0.1 RC5 allow remote attackers to inject arbitrary web script or HTML via the (1) comment, (2) email, (3) homepage, (4) id, (5) name, and (6) text parameters in (a) index.php, the (7) comment, (8) email, (9) homepage, (10) number, (11) name, and (12) text parameters in (b) admin/guestbook.php, and the (13) email, (14) homepage, (15) icq, (16) name, and (17) text parameters in (c) admin/edit.php.

N/A

N/A

myPHP Guestbook 多个跨站脚本攻击(XSS)漏洞

myPHP Guestbook 1.x 到 2.0.0-r1以及2.0.1 RC5之前版本存在多个跨站脚本攻击(XSS)漏洞。远程攻击者可以借助(a) index.php中的(1) comment, (2) email, (3) homepage, (4) id, (5) name和(6) text参数, (b) admin/guestbook.php中的 (7) comment, (8) email, (9) homepage, (10) number, (11) name和(12) text参数, 以

N/A

N/A