Vulnerability   
Search   
    Search 210752 CVE descriptions
and 93608 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.11501
Category:CGI abuses
Title:Justice guestbook
Summary:NOSUMMARY
Description:Description:

The remote host is running Justice Guestbook.

This set of CGI has two vulnerabilities :

- It is vulnerable to cross site scripting attacks (in jgb.php3)
- If the user requests the file cfooter.php3, he will obtain
the physical path of the remote CGI


An attacker may use these flaws to steal the cookies of your users
or to gain better knowledge about this host.


Solution : Delete this package
Risk factor : Low

Cross-Ref: BugTraq ID: 7233
BugTraq ID: 7234
CopyrightThis script is Copyright (C) 2003 Renaud Deraison

This is only one of 93608 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2021 E-Soft Inc. All rights reserved.