CVE-2009-2440

Name of the Vulnerable Software and Affected Versions JNM Guestbook version 3.0

Description A cross-site scripting (XSS) issue exists, allowing remote attackers to inject arbitrary web script or HTML. This is achieved via the page parameter in index.php.

Recommendations For JNM Guestbook version 3.0, consider validating and sanitizing user input for the page parameter to prevent XSS attacks. As a temporary workaround, restrict access to index.php to minimize the risk of exploitation.