Unrated severityNVD Advisory· Published Apr 12, 2007· Updated Apr 23, 2026

CVE-2007-1998

Description

Direct static code injection vulnerability in HIOX Guest Book (HGB) 4.0 allows remote attackers to inject arbitrary PHP code via the Email field, which results in code execution through a direct request to gb.php.

Affected products

Hiox India/Guest Book
cpe:2.3:a:hiox_india:guest_book:4.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/24835nvd
www.vupen.com/english/advisories/2007/1333nvd
exchange.xforce.ibmcloud.com/vulnerabilities/33540nvd
www.exploit-db.com/exploits/3697nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.005
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000