Unrated severityNVD Advisory· Published Jul 31, 2006· Updated Jun 16, 2026
CVE-2006-3937
CVE-2006-3937
Description
post.php in x_atrix xGuestBook 1.02 allows remote attackers to obtain sensitive information via a request without the (1) user, (2) mail, (3) p, or (4) url parameter, which reveals the installation path in an error message.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- cpe:2.3:a:xguestbook:xguestbook:1.02:*:*:*:*:*:*:*
- Range: =1.02
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.