Esoftpro Online Guestbook Pro vulnerabilities
4 known vulnerabilities affecting esoftpro/online_guestbook_pro.
Total CVEs
4
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM3
Vulnerabilities
Page 1 of 1
CVE-2010-4996P3HIGHCVSS 7.5PoCv5.12011-11-01
CVE-2010-4996 [HIGH] CWE-89 CVE-2010-4996: SQL injection vulnerability in ogp_show.php in esoftpro Online Guestbook Pro 5.1 allows remote attac
SQL injection vulnerability in ogp_show.php in esoftpro Online Guestbook Pro 5.1 allows remote attackers to execute arbitrary SQL commands via the search parameter.
nvd
CVE-2009-2441P4MEDIUMCVSS 4.3PoCv5.12009-07-13
CVE-2009-2441 [MEDIUM] CWE-79 CVE-2009-2441: Cross-site scripting (XSS) vulnerability in ogp_show.php in Online Guestbook Pro 5.1 allows remote a
Cross-site scripting (XSS) vulnerability in ogp_show.php in Online Guestbook Pro 5.1 allows remote attackers to inject arbitrary web script or HTML via the entry parameter.
nvd
CVE-2009-2447P4MEDIUMCVSS 4.3v5.12009-07-13
CVE-2009-2447 [MEDIUM] CWE-79 CVE-2009-2447: Multiple cross-site scripting (XSS) vulnerabilities in ogp_show.php in Online Guestbook Pro 5.1 allo
Multiple cross-site scripting (XSS) vulnerabilities in ogp_show.php in Online Guestbook Pro 5.1 allow remote attackers to inject arbitrary web script or HTML via the (1) search or (2) display parameter.
nvd
CVE-2009-2448P4MEDIUMCVSS 4.3v5.12009-07-13
CVE-2009-2448 [MEDIUM] CWE-79 CVE-2009-2448: Cross-site scripting (XSS) vulnerability in ogp_show.php in Online Guestbook Pro 5.1 allows remote a
Cross-site scripting (XSS) vulnerability in ogp_show.php in Online Guestbook Pro 5.1 allows remote attackers to inject arbitrary web script or HTML via the search_choice parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
nvd