CVE-2006-6487

Name of the Vulnerable Software and Affected Versions: DT Guestbook version 1.0f

Description: A cross-site scripting issue exists due to the lack of proper input validation in the index.php file of DT Guestbook. When the register globals setting is enabled, remote attackers can inject arbitrary web script or HTML via the error[] parameter.

Recommendations: For DT Guestbook version 1.0f, consider disabling the register globals setting to prevent exploitation. Additionally, restrict access to the index.php file until a proper fix is applied, and avoid using the error[] parameter in sensitive operations.