Mdsjack Mjguest vulnerabilities
3 known vulnerabilities affecting mdsjack/mjguest.
Total CVEs
3
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
MEDIUM3
Vulnerabilities
Page 1 of 1
CVE-2008-3404P4MEDIUMCVSS 4.3PoCv6.82008-07-31
CVE-2008-3404 [MEDIUM] CWE-79 CVE-2008-3404: Cross-site scripting (XSS) vulnerability in guestbook.js.php in MJGuest 6.8 GT allows remote attacke
Cross-site scripting (XSS) vulnerability in guestbook.js.php in MJGuest 6.8 GT allows remote attackers to inject arbitrary web script or HTML via the link parameter.
nvd
CVE-2008-2187P4MEDIUMCVSS 4.3PoCv6.72008-05-13
CVE-2008-2187 [MEDIUM] CWE-79 CVE-2008-2187: Cross-site scripting (XSS) vulnerability in mjguest.php in Mjguest 6.7 GT Rev.01 allows remote attac
Cross-site scripting (XSS) vulnerability in mjguest.php in Mjguest 6.7 GT Rev.01 allows remote attackers to inject arbitrary web script or HTML via the level parameter in a redirect action, possibly involving interface/redirect.htm.php.
nvd
CVE-2008-2268P4MEDIUMCVSS 4.3v6.7_gt_rev12008-05-16
CVE-2008-2268 [MEDIUM] CVE-2008-2268: Open redirect vulnerability in interface/redirect.htm.php in Mjguest 6.7 GT Rev.01 allows user-assis
Open redirect vulnerability in interface/redirect.htm.php in Mjguest 6.7 GT Rev.01 allows user-assisted remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the goto parameter in a redirect action to mjguest.php. NOTE: this is user-assisted because there is a delay and a notification before redirection occurs.
nvd