CVE-2009-4678 (winn_guestbook)
Cross-site scripting (XSS) vulnerability in index.php in Winn Guestbook 2.4 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO.
Bringing security awareness to the masses
Search this site
Categories
Recommended Sites
Pages
US-CERT Vulnerability Notes
- VU#807665: Washington Courts web site vulnerable to SQL injection and cross-site scripting
- VU#204055: Blackboard Transact database credentials disclosure
- VU#707943: Microsoft Windows based applications may insecurely load dynamic libraries
- VU#644319: Ghostscript Heap Corruption in TrueType bytecode interpreter
- VU#278785: DevonIT weak authentication and buffer overflow in /usr/bin/tm-console-bin
Cyber Security Alerts
Google Search
Blogroll
Under Construction