Description
Cross-site scripting vulnerability in MyGuestbook 1.0 allows remote attackers to execute arbitrary script or inject HTML via fields such as (1) user name or (2) comments.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by BrainRawt · textwebappscgi
https://www.exploit-db.com/exploits/21433
References (4)
Core 4
Core References
URL Repurposed x_refsource_confirm
http://www.levcgi.com/programs.cgi?program=myguestbook&action=history
Exploit, Vendor Advisory mailing-list
x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/2002-04/0422.html
Exploit, Vendor Advisory vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/4651
Vendor Advisory vdb-entry
x_refsource_xf
http://www.iss.net/security_center/static/8968.php
Scores
EPSS
0.0544
EPSS Percentile
90.2%
Details
Status
published
Products (1)
levcgi.com/myguestbook
1.0
Published
Aug 12, 2002
Tracked Since
Feb 18, 2026