Unrated severityNVD Advisory· Published Aug 11, 2009· Updated Jun 16, 2026
CVE-2008-6934
CVE-2008-6934
Description
Static code injection vulnerability in Sanus|artificium (aka Sanusart) Free simple guestbook PHP script, when downloaded before 20081111, allows remote attackers to inject arbitrary PHP code into messages.txt via the message parameter to act.php, which is executed when guestbook/guestbook.php is accessed. NOTE: some of these details are obtained from third party information.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:a:sansuart:free_simple_guestbook_php_script:*:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:sansuart:free_simple_guestbook_php_script:*:*:*:*:*:*:*:*
- (no CPE)range: <20081111
- (no CPE)range: <20081111
Patches
Vulnerability mechanics
References
7- www.securityfocus.com/bid/32240nvdExploit
- secunia.com/advisories/32643nvdVendor Advisory
- www.vupen.com/english/advisories/2008/3095nvdVendor Advisory
- osvdb.org/49703nvd
- www.sanusart.com/news.phpnvd
- exchange.xforce.ibmcloud.com/vulnerabilities/46526nvd
- www.exploit-db.com/exploits/7079nvd
News mentions
0No linked articles in our index yet.