CVE-2002-0730

Philip Chinerys Guestbook - XSS

Title source: rule

Description

Cross-site scripting vulnerability in guestbook.pl for Philip Chinery's Guestbook 1.1 allows remote attackers to execute Javascript or HTML via fields such as (1) Name, (2) EMail, or (3) Homepage.

Exploits (1)

exploitdb WORKING POC VERIFIED

by markus arndt · textwebappscgi

https://www.exploit-db.com/exploits/21406

View Code ZIP pw:eip

References (3)

Core 3

Core References

Vendor Advisory vdb-entry x_refsource_xf

http://www.iss.net/security_center/static/8916.php

Exploit, Vendor Advisory mailing-list x_refsource_bugtraq

http://archives.neohapsis.com/archives/bugtraq/2002-04/0309.html

Exploit, Vendor Advisory vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/4566

Scores

EPSS 0.0306

EPSS Percentile 86.8%

Details

Status published

Products (1)

philip_chinery/philip_chinerys_guestbook 1.1

Published Aug 12, 2002

Tracked Since Feb 18, 2026