VYPR

Keep It Simple Guest Book

by Raven PHP Scripts

CVEs (3)

  • CVE-2008-1635Apr 2, 2008
    risk 0.03cvss epss 0.03

    Directory traversal vulnerability in view_private.php in Keep It Simple Guest Book (KISGB) 5.0.0 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the tmp_theme parameter. NOTE: 5.1.1 is also reportedly affected.

  • CVE-2006-6764Dec 27, 2006
    risk 0.03cvss epss 0.02

    PHP remote file inclusion vulnerability in authenticate.php in Keep It Simple Guest Book (KISGB), when executing PHP through CGI, allows remote attackers to execute arbitrary PHP code via a URL in the default_path_to_themes parameter.

  • CVE-2006-6763Dec 27, 2006
    risk 0.03cvss epss 0.02

    Multiple PHP remote file inclusion vulnerabilities in the Keep It Simple Guest Book (KISGB) allow remote attackers to execute arbitrary PHP code via a URL in the (1) path_to_themes parameter in (a) authenticate.php, and the (2) default_path_for_themes parameter in (b) admin.php…