Vulnerabilities (CVE)

Filtered by vendor Esoftpro Subscribe
Filtered by product Online Guestbook Pro
Total 5 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2010-4996 1 Esoftpro 1 Online Guestbook Pro 2024-02-28 7.5 HIGH N/A
SQL injection vulnerability in ogp_show.php in esoftpro Online Guestbook Pro 5.1 allows remote attackers to execute arbitrary SQL commands via the search parameter.
CVE-2009-4935 1 Esoftpro 1 Online Guestbook Pro 2024-02-28 7.5 HIGH N/A
SQL injection vulnerability in ogp_show.php in Online Guestbook Pro allows remote attackers to execute arbitrary SQL commands via the display parameter.
CVE-2009-2441 1 Esoftpro 1 Online Guestbook Pro 2024-02-28 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in ogp_show.php in Online Guestbook Pro 5.1 allows remote attackers to inject arbitrary web script or HTML via the entry parameter.
CVE-2009-2448 1 Esoftpro 1 Online Guestbook Pro 2024-02-28 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in ogp_show.php in Online Guestbook Pro 5.1 allows remote attackers to inject arbitrary web script or HTML via the search_choice parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
CVE-2009-2447 1 Esoftpro 1 Online Guestbook Pro 2024-02-28 4.3 MEDIUM N/A
Multiple cross-site scripting (XSS) vulnerabilities in ogp_show.php in Online Guestbook Pro 5.1 allow remote attackers to inject arbitrary web script or HTML via the (1) search or (2) display parameter.