Xguestbook CVE-2006-3937 Multiple Information Disclosure Vulnerabilities

Xguestbook is prone to multiple information disclosure vulnerabilities which affects the 'post.php' script which allows remote attackers to obtain sensitive information via a request without the 'user', 'mail', 'p', or 'url' parameter, which reveals the installation path in an error message.


 

Privacy Statement
Copyright 2010, SecurityFocus