Lars Ellingsen » Guestserver : Security Vulnerabilities, CVEs,
Multiple cross-site scripting (XSS) vulnerabilities in guestbook.cgi in Lars Ellingsen Guestserver 4.13 and earlier allow remote attackers to inject arbitrary web script or HTML via unspecified message fields.
Max CVSS
4.3
EPSS Score
0.17%
Published
2005-12-14
Updated
2018-10-19
Lars Ellingsen guestserver.cgi allows remote attackers to execute arbitrary commands via shell metacharacters in the "email" parameter.
Max CVSS
10.0
EPSS Score
0.27%
Published
2001-05-03
Updated
2017-12-19
2 vulnerabilities found