CVE-2006-7076
published 2007-03-02CVE-2006-7076: Cross-site scripting (XSS) vulnerability in guestbook.php in Advanced Guestbook 2.4 for phpBB allows remote attackers to inject arbitrary web script or HTML…
PriorityP414medium4.3CVSS 2.0
AVNACMAuNCNIPAN
EPSS
0.96%
57.2th percentile
Cross-site scripting (XSS) vulnerability in guestbook.php in Advanced Guestbook 2.4 for phpBB allows remote attackers to inject arbitrary web script or HTML via the entry parameter. NOTE: this issue might be resultant from SQL injection.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| phpbb_group | phpbb_advanced_guestbook | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://archives.neohapsis.com/archives/bugtraq/2006-07/0381.htmlhttp://secunia.com/advisories/19905http://securityreason.com/securityalert/2323http://www.majorsecurity.de/advisory/major_rls25.txthttps://exchange.xforce.ibmcloud.com/vulnerabilities/27907http://archives.neohapsis.com/archives/bugtraq/2006-07/0381.htmlhttp://secunia.com/advisories/19905http://securityreason.com/securityalert/2323http://www.majorsecurity.de/advisory/major_rls25.txthttps://exchange.xforce.ibmcloud.com/vulnerabilities/27907
2007-03-02
Published