Unrated severityNVD Advisory· Published Mar 9, 2009· Updated Apr 23, 2026

CVE-2008-6446

Description

Static code injection vulnerability in the Guestbook component in CMS MAXSITE allows remote attackers to inject arbitrary PHP code into the guestbook via the message parameter.

Affected products

Geniuscyber/Maxsite
cpe:2.3:a:geniuscyber:maxsite:-:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/32588nvdExploit
exchange.xforce.ibmcloud.com/vulnerabilities/47025nvd
www.exploit-db.com/exploits/7322nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.003
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000