Unrated severityNVD Advisory· Published Jan 21, 2014· Updated Apr 29, 2026

CVE-2014-1620

Description

Multiple cross-site scripting (XSS) vulnerabilities in add.php in HIOX Guest Book (HGB) 5.0 allow remote attackers to inject arbitrary web script or HTML via the (1) name1, (2) email, or (3) cmt parameter.

Affected products

Hiox/Hiox Guest Book
cpe:2.3:a:hiox:hiox_guest_book:5.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

packetstormsecurity.com/files/124681/Hiox-Guest-Book-5.0-Cross-Site-Scripting.htmlnvdExploit
osvdb.org/101844nvd
www.securityfocus.com/bid/64683nvd
exchange.xforce.ibmcloud.com/vulnerabilities/90156nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000