Kmsoft : Security Vulnerabilities, CVEs,
SQL injection vulnerability in default.asp in KMSoft Guestbook (aka GBook) allows remote attackers to execute arbitrary SQL commands via the p parameter.
Max CVSS
7.5
EPSS Score
0.08%
Published
2011-11-01
Updated
2017-08-29
KMSoft Guestbook (aka GBook) 1.0 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for db/db.mdb.
Max CVSS
5.0
EPSS Score
1.67%
Published
2010-03-16
Updated
2017-08-17
2 vulnerabilities found