PT-2004-2849 · Unknown · Advanced Guestbook

Published

2004-04-23

Updated

2017-07-11

CVE-2004-1952

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Advanced Guestbook version 2.2

Description The issue allows remote attackers to execute arbitrary SQL commands and gain privileges via the password.

Recommendations For Advanced Guestbook version 2.2, update to a version that fixes the SQL injection issue to prevent remote attackers from executing arbitrary SQL commands.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2004-1952

Affected Products

Advanced Guestbook

PT-2004-2849 · Unknown · Advanced Guestbook

CVE-2004-1952

Related Identifiers

Affected Products

References · 7