CVE-2006-1913
jax_guestbook < 3.50 - Cross-Site Scripting via Page Parameter
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2006-1913. PoCs published by ALMOKANN3.
AI-analyzed exploit summary The provided text describes a cross-site scripting (XSS) vulnerability in Jax Guestbook version 3.50, where user-supplied input is not properly sanitized. The vulnerability can be exploited via the 'page' parameter in specific URLs.
Description
Cross-site scripting (XSS) vulnerability in jax_guestbook.php in Jax Guestbook 3.1, 3.31, and 3.50 allows remote attackers to inject arbitrary web script or HTML via the page parameter.
Exploits (1)
The provided text describes a cross-site scripting (XSS) vulnerability in Jax Guestbook version 3.50, where user-supplied input is not properly sanitized. The vulnerability can be exploited via the 'page' parameter in specific URLs.