VYPR
Unrated severityNVD Advisory· Published Jun 7, 2006· Updated Jun 16, 2026

CVE-2006-2882

CVE-2006-2882

Description

Multiple cross-site scripting (XSS) vulnerabilities submit.asp in ASPScriptz Guest Book 2.0 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) GBOOK_UNAME, (2) GBOOK_EMAIL, (3) GBOOK_CITY, (4) GBOOK_COU, (5) GBOOK_WWW, and (6) GBOOK_MESS form fields.

Affected products

2
  • cpe:2.3:a:aspscriptz:aspscriptz_guest_book:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:aspscriptz:aspscriptz_guest_book:*:*:*:*:*:*:*:*range: <=2.0
    • (no CPE)range: <=2.0

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.