Vulnerability Description
Multiple cross-site scripting (XSS) vulnerabilities in guestbook.php in Fantastic Guestbook 2.0.1, and possibly earlier versions, allow remote attackers to inject arbitrary web script or HTML via the (1) first_name, (2) last_name, or (3) nickname parameters.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Fantastic Guestbook Project | Fantastic Guestbook | 2.0.1 |
Related Weaknesses (CWE)
References
- http://it.security.netsons.org/exploit/FGB.txtBroken LinkExploitVendor Advisory
- http://secunia.com/advisories/21024Broken LinkExploitVendor Advisory
- http://www.osvdb.org/27107Broken Link
- http://www.securityfocus.com/archive/1/440152/100/100/threadedBroken LinkThird Party AdvisoryVDB Entry
- http://www.securityfocus.com/bid/18942Broken LinkExploitThird Party Advisory
- http://www.vupen.com/english/advisories/2006/2762Broken Link
- https://exchange.xforce.ibmcloud.com/vulnerabilities/27697Third Party AdvisoryVDB Entry
- http://it.security.netsons.org/exploit/FGB.txtBroken LinkExploitVendor Advisory
- http://secunia.com/advisories/21024Broken LinkExploitVendor Advisory
- http://www.osvdb.org/27107Broken Link
- http://www.securityfocus.com/archive/1/440152/100/100/threadedBroken LinkThird Party AdvisoryVDB Entry
- http://www.securityfocus.com/bid/18942Broken LinkExploitThird Party Advisory
- http://www.vupen.com/english/advisories/2006/2762Broken Link
- https://exchange.xforce.ibmcloud.com/vulnerabilities/27697Third Party AdvisoryVDB Entry
FAQ
What is CVE-2006-3568?
CVE-2006-3568 is a vulnerability with a CVSS score of 4.3 (MEDIUM). Multiple cross-site scripting (XSS) vulnerabilities in guestbook.php in Fantastic Guestbook 2.0.1, and possibly earlier versions, allow remote attackers to inject arbitrary web script or HTML via the ...
How severe is CVE-2006-3568?
CVE-2006-3568 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-3568?
Check the references section above for vendor advisories and patch information. Affected products include: Fantastic Guestbook Project Fantastic Guestbook.