GCVE - cpe:2.3:a:advanced_guestbook:advanced_guestbook:2.3.1:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:advanced_guestbook:advanced_guestbook:2.3.1:*:*:*:*:*:*:*

part: a version: 2.3.1 update: *

Vendor	Advanced Guestbook (`80e6e77f-db76-51b8-b7cd-0d5141553eb3`)
Product	Advanced Guestbook (`68a16c79-b39e-505c-bde9-4f95e8ce9982`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2006-5804`	vulnerable	2026-06-08 04:49:21.323791	Details available PHP remote file inclusion vulnerability in admin.php in Advanced Guestbook 2.3.1 allows remote attackers to execute arbitrary PHP code via a URL in the include_path parameter. Published: 2006-11-08T20:00:00.000Z Updated: 2024-08-07T20:04:55.663Z Open on db.gcve.eu Reference links http://www.osvdb.org/30230 http://www.securityfocus.com/bid/20902 http://www.securityfocus.com/archive/1/450729/100/0/threaded http://securityreason.com/securityalert/1833 http://www.vupen.com/english/advisories/2006/4385	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2005-4649`	vulnerable	2026-06-08 04:48:44.611889	Details available Multiple cross-site scripting (XSS) vulnerabilities in Advanced Guestbook 2.2 and 2.3.1 allow remote attackers to inject arbitrary web script or HTML via (1) the entry parameter in index.php and (2) the gb_id parameter in comment.php. NOTE: The index.php/entry vector might be resultant from CVE-2005-1548. Published: 2006-01-13T23:00:00.000Z Updated: 2024-09-16T23:42:25.423Z Open on db.gcve.eu Reference links http://archives.neohapsis.com/archives/fulldisclosure/2005-12/1230.html http://www.morx.org/guestbook.txt http://www.osvdb.org/22188	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2005-1548`	vulnerable	2026-06-08 04:48:26.904260	Details available SQL injection vulnerability in index.php in Advanced Guestbook 2.3.1 allows remote attackers to execute arbitrary SQL commands via the entry parameter. Published: 2005-05-14T04:00:00.000Z Updated: 2024-08-07T21:51:50.451Z Open on db.gcve.eu Reference links http://marc.info/?l=bugtraq&m=111566565621193&w=2 http://www.securityfocus.com/bid/13548	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2004-1213`	vulnerable	2026-06-08 04:47:53.347927	Details available Cross-site scripting (XSS) vulnerability in index.php in Advanced Guestbook 2.3.1, 2.2, and possibly other versions allows remote attackers to inject arbitrary web script or HTML via the entry parameter. Published: 2004-12-15T05:00:00.000Z Updated: 2024-08-08T00:46:11.549Z Open on db.gcve.eu Reference links https://exchange.xforce.ibmcloud.com/vulnerabilities/18334 http://www.securityfocus.com/bid/11798 http://marc.info/?l=bugtraq&m=110238530129498&w=2 http://marc.info/?l=bugtraq&m=110206527624612&w=2	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

Advanced Guestbook

PURL mappings

Vulnerability references

Contribute