GCVE - cpe:2.3:a:chipmunk_scripts:chipmunk

Approved changes feed: RSS · Atom

cpe:2.3:a:chipmunk_scripts:chipmunk_guestbook:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Chipmunk Scripts (`bcbcc3df-3c60-5c4d-99ca-8e51405eafec`)
Product	Chipmunk Guestbook (`f8fe24be-eca7-5d8c-9cfd-1b46799b7e97`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2006-2757`	vulnerable	2026-06-08 04:49:07.477838	Details available Cross-site scripting (XSS) vulnerability in Chipmunk guestbook allows remote attackers to inject arbitrary web script or HTML via the (1) start parameter in (a) index.php; (2) forumID parameter in index.php, (b) newtopic.php, and (c) reply.php; and (3) ID parameter to (d) edit.php. Published: 2006-06-02T01:00:00.000Z Updated: 2024-08-07T17:58:51.932Z Open on db.gcve.eu Reference links http://packetstorm.linuxsecurity.com/0811-exploits/chipmunkguestbook-sqlxss.txt http://www.securityfocus.com/archive/1/435306/100/0/threaded http://osvdb.org/50345 http://www.securityfocus.com/archive/1/435196/100/0/threaded http://securitytracker.com/id?1016182	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2006-1683`	vulnerable	2026-06-08 04:48:57.820020	Details available SQL injection vulnerability in admin/login.php in Chipmunk Guestbook allows remote attackers to execute arbitrary SQL commands and bypass login authentication via the User name. Published: 2006-04-10T23:00:00.000Z Updated: 2024-08-07T17:19:49.389Z Open on db.gcve.eu Reference links http://secunia.com/advisories/19584 http://www.securityfocus.com/bid/17483 https://exchange.xforce.ibmcloud.com/vulnerabilities/25695 http://www.vupen.com/english/advisories/2006/1323 http://www.securityfocus.com/archive/1/430315/100/0/threaded	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2006-0069`	vulnerable	2026-06-08 04:48:45.875054	Details available Cross-site scripting (XSS) vulnerability in addentry.php in Chipmunk Guestbook 1.4 and earlier allows remote attackers to inject arbitrary web script or HTML via the homepage parameter. Published: 2006-01-03T23:00:00.000Z Updated: 2024-08-07T16:18:20.828Z Open on db.gcve.eu Reference links http://www.securityfocus.com/archive/1/420667/100/0/threaded http://www.securityfocus.com/bid/16112 http://secunia.com/advisories/18270 http://www.securityfocus.com/bid/19087 http://evuln.com/vulns/4/summary.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2005-3517`	vulnerable	2026-06-08 04:48:41.058552	Details available Chipmunk Scripts Guestbook allows remote attackers to obtain the installation path of the script via a URL that causes an error message to be displayed, such as a URL that contains a single quote (') in the start parameter of index.php. Published: 2005-11-06T11:00:00.000Z Updated: 2024-08-07T23:17:22.823Z Open on db.gcve.eu Reference links http://marc.info/?l=bugtraq&m=112982490104274&w=2 http://www.osvdb.org/20170 http://securityreason.com/securityalert/96 https://exchange.xforce.ibmcloud.com/vulnerabilities/22825 http://irannetjob.com/content/view/148/28/	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

Chipmunk Guestbook

PURL mappings

Vulnerability references

Contribute