CVE-2009-4678 Information
Feb 14, 2021
cve
Description
Cross-site scripting (XSS) vulnerability in index.php in Winn Guestbook 2.4 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO.
Reference
http://packetstormsecurity.org/0912-exploits/winngb-xss.txt http://secunia.com/advisories/37963 http://www.exploit-db.com/exploits/10653 http://www.osvdb.org/61350 https://exchange.xforce.ibmcloud.com/vulnerabilities/55086
Share on: