1 results (0.004 seconds)

CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 2

Cross-site scripting (XSS) vulnerability in index.php in JNM Guestbook 3.0 allows remote attackers to inject arbitrary web script or HTML via the page parameter. Vulnerabilidad de ejecución de secuencias de comandos en sitios cruzados en index.php en JNM Guestbook 3.0 permite a atacantes remotos inyectar HTML o scripts web arbitrarios a través del parámetro page. • https://www.exploit-db.com/exploits/34806 http://packetstormsecurity.org/0907-exploits/jnm-xss.txt http://secunia.com/advisories/35760 http://www.vupen.com/english/advisories/2009/1831 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •