[CLOSE] OSVDB ID : 24237 - Disclosed: 2006-03-29

Description:

@1 Event Publisher contains a flaw that may lead to an unauthorized information disclosure.  The issue is triggered when an attacker makes a direct request to the eventpublisher.txt file, which will disclose private comments resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 24235 - Disclosed: 2006-03-27

Description:

@1 Event Publisher contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate Event, Description, Time, Website, and Public Remarks fields upon submission to the eventpublisher_admin.htm script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 24236 - Disclosed: 2006-03-29

Description:

@1 Event Publisher contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the Event, Description, Time, Website, and Public Remarks fields upon submission to the eventpublisher_usersubmit.htm script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 23863 - Disclosed: 2006-03-11

Description:

@1 File Store contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the confirm.php script not properly sanitizing user-supplied input to the 'id' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 23855 - Disclosed: 2006-03-11

Description:

@1 File Store contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the control/files/delete.php script not properly sanitizing user-supplied input to the 'id' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 23854 - Disclosed: 2006-03-11

Description:

@1 File Store contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the control/files/edit.php script not properly sanitizing user-supplied input to the 'id' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 23859 - Disclosed: 2006-03-11

Description:

@1 File Store contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the control/folders/access.php script not properly sanitizing user-supplied input to the 'id' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 23860 - Disclosed: 2006-03-11

Description:

@1 File Store contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the control/folders/delete.php script not properly sanitizing user-supplied input to the 'id' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 23858 - Disclosed: 2006-03-11

Description:

@1 File Store contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the control/folders/edit.php script not properly sanitizing user-supplied input to the 'id' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 23862 - Disclosed: 2006-03-11

Description:

@1 File Store contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the control/groups/delete.php script not properly sanitizing user-supplied input to the 'id' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 23861 - Disclosed: 2006-03-11

Description:

@1 File Store contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the control/groups/edit.php script not properly sanitizing user-supplied input to the 'id' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 23857 - Disclosed: 2006-03-11

Description:

@1 File Store contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the control/users/delete.php script not properly sanitizing user-supplied input to the 'id' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 23856 - Disclosed: 2006-03-11

Description:

@1 File Store contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the control/users/edit.php script not properly sanitizing user-supplied input to the 'id' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 23864 - Disclosed: 2006-03-11

Description:

@1 File Store contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the download.php script not properly sanitizing user-supplied input to the 'id' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 24106 - Disclosed: 2006-03-11

Description:

@1 File Store contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the folder.php script not properly sanitizing user-supplied input to the 'id' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 23852 - Disclosed: 2006-03-11

Description:

@1 File Store contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the libs/functions.php script not properly sanitizing user-supplied input to the 'id' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 23853 - Disclosed: 2006-03-11

Description:

@1 File Store contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the libs/user.php script not properly sanitizing user-supplied input to the 'id' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 23851 - Disclosed: 2006-03-11

Description:

@1 File Store contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the password.php script not properly sanitizing user-supplied input to the 'email' or 'id' variables. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 23850 - Disclosed: 2006-03-11

Description:

@1 File Store contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'real_name', 'email' or 'login' variables upon submission to the signup.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 24238 - Disclosed: 2006-03-29

Description:

@1 Table Publisher contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the Title of Table field upon submission to the tablepublisher.cgi script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 22203 - Disclosed: 2006-01-03

Description:

@CardMAX contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'cat' variable upon submission to the 'index.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 31246 - Disclosed: 2006-11-05

Description:

@cid stats has been reported to contain a flaw that may allow a remote attacker to execute arbitrary commands. The issue is supposedly due to the install.php3 script not properly sanitizing user input supplied to the 'repertoire' variable. However, subsequent examination indicates the variable is previously set and can not be manipulated by an attacker.

[CLOSE] OSVDB ID : 31708 - Disclosed: 2007-01-07

Description:

(Description Provided by CVE) : Directory traversal vulnerability in admin/skins.php for @lex Guestbook 4.0.2 and earlier allows remote attackers to create files in arbitrary directories via ".." sequences in the (1) aj_skin and (2) skin_edit parameters. NOTE: this can be leveraged for file inclusion by creating a skin file in the lang directory, then referencing that file via the lang parameter to index.php, which passes a sanity check in livre_include.php.

[CLOSE] OSVDB ID : 31707 - Disclosed: 2007-01-07

Description:

(Description Provided by CVE) : SQL injection vulnerability in index.php in @lex Guestbook 4.0.2 and earlier, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the lang parameter.

[CLOSE] OSVDB ID : 31709 - Disclosed: 2007-01-07

Description:

(Description Provided by CVE) : Directory traversal vulnerability in admin/skins.php for @lex Guestbook 4.0.2 and earlier allows remote attackers to create files in arbitrary directories via ".." sequences in the (1) aj_skin and (2) skin_edit parameters. NOTE: this can be leveraged for file inclusion by creating a skin file in the lang directory, then referencing that file via the lang parameter to index.php, which passes a sanity check in livre_include.php.

[CLOSE] OSVDB ID : 61618 - Disclosed: 2010-01-11

Description:

@lex Guestbook contains a flaw that allows a remote cross site scripting (XSS) attack. This flaw exists because the application does not validate the 'seeMess' and 'seeNotes' parameters upon submission to the 'index.php' script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 31705 - Disclosed: 2006-12-01

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in index.php in @lex Guestbook 4.0.1 allows remote attackers to inject arbitrary web script or HTML via the skin parameter.

[CLOSE] OSVDB ID : 31706 - Disclosed: 2006-11-30

Description:

(Description Provided by CVE) : index.php in @lex Guestbook 4.0.1 allows remote attackers to obtain sensitive information via a skin parameter referencing a nonexistent skin, which reveals the installation path in an error message.

[CLOSE] OSVDB ID : 57625 - Disclosed: 2008-03-31

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in @lex Guestbook 4.0.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) language_setup parameter to setup.php or (2) test parameter to index.php. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. NOTE: a third party has been reported that the test parameter is not used in @lex Guestbook.

[CLOSE] OSVDB ID : 10375 - Disclosed: 2004-09-28

Description:

@lex Guestbook contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the 'livre_include.php' script not properly sanitizing user input supplied to the 'chem_absolu' parameter. This may allow an attacker to include a file from a third-party remote host that contains commands or code that will be executed by the vulnerable script with the same privileges as the web server.