CVE-2006-2837

Cross-site scripting (XSS) vulnerability in Techno Dreams Guest Book allows remote attackers to inject arbitrary web script or HTML via certain comment fields in the "Sign Our GuestBook" page, probably the x_Comments parameter to guestbookadd.asp.
Configurations

Configuration 1 (hide)

cpe:2.3:a:techno_dreams:techno_dreams_guest_book:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2006-06-06 20:06

Updated : 2024-02-28 10:42


NVD link : CVE-2006-2837

Mitre link : CVE-2006-2837

CVE.ORG link : CVE-2006-2837


JSON object : View

Products Affected

techno_dreams

  • techno_dreams_guest_book