Description
Cross-site scripting (XSS) vulnerability in mwguest.php in Manic Web MWGuest 2.1.0 allows remote attackers to inject arbitrary web script or HTML via the homepage parameter.
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by Aliaksandr Hartsuyeu · textwebappsphp
https://www.exploit-db.com/exploits/27713
References (5)
Core 5
Core References
Third Party Advisory third-party-advisory
x_refsource_sreason
http://securityreason.com/securityalert/747
Various Sources x_refsource_misc
http://evuln.com/vulns/122/summary.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/25674
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/431507/100/0/threaded
Exploit vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/17630
Scores
EPSS
0.0450
EPSS Percentile
89.2%
Details
Status
published
Products (1)
manic_web/mwguest
2.1.0
Published
Apr 21, 2006
Tracked Since
Feb 18, 2026