CVE-2006-0706
Gastebuch < 1.3.2 - Cross-Site Scripting via URL Parameter in eintrag.php
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2006-0706. PoCs published by Micha Borrmann.
AI-analyzed exploit summary The provided text describes a cross-site scripting (XSS) vulnerability in Gastebuch version 1.3.2, where user-supplied input is not properly sanitized, allowing arbitrary script execution in the context of the affected site.
Description
Cross-site scripting vulnerability in eintrag.php in Gästebuch (Gastebuch) before 1.3.3 allows remote attackers to inject arbitrary web script or HTML via the URL, which is used in the homepage parameter.
Exploits (1)
The provided text describes a cross-site scripting (XSS) vulnerability in Gastebuch version 1.3.2, where user-supplied input is not properly sanitized, allowing arbitrary script execution in the context of the affected site.