CVE-2006-2994 Information
Description
Multiple cross-site scripting (XSS) vulnerabilities in index.php in phazizGuestbook 2.0 allow remote attackers to inject arbitrary web script or HTML via the (1) name (2) email (3) url fields and (4) text field (content parameter).
Reference
http://secunia.com/advisories/20615 http://securityreason.com/securityalert/1081 http://www.securityfocus.com/archive/1/436602/100/0/threaded http://www.securityfocus.com/bid/18495 http://www.vupen.com/english/advisories/2006/2421 https://exchange.xforce.ibmcloud.com/vulnerabilities/27065 Multiple cross-site scripting (XSS) vulnerabilities in index.php in phazizGuestbook 2.0 allow remote attackers to inject arbitrary web script or HTML via the (1) name (2) email (3) url fields and (4) text field (content parameter).
Share on: