Cross-Site Scripting Vulnerability in phpBook by phpBook
CVE-2005-2397

Currently unrated

Key Information:

Vendor: Gnu
Status: PHPbook
Vendor: CVE Published:; 27 July 2005

Summary

The vulnerability in phpBook 1.46 allows remote attackers to exploit the guestbook.php script by injecting arbitrary web scripts or HTML through the admin parameter. This can lead to unauthorized actions and compromises on affected websites, emphasizing the need for proper input validation and web application security measures.

References

http://www.securityfocus.com/bid/14390

vdb-entryx_refsource_BID

http://www.osvdb.org/18295

vdb-entryx_refsource_OSVDB

http://securitytracker.com/id?1014573

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
Jul 27, 2005
Vulnerability Reserved
Jul 27, 2005