1-script - 1-book CVE

Filtered by vendor 1-script Subscribe

Filtered by product 1-book

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2008-2638	1 1-script	1 1-book	2023-12-10	10.0 HIGH	N/A
Static code injection vulnerability in guestbook.php in 1Book 1.0.1 and earlier allows remote attackers to upload arbitrary PHP code via the message parameter in an HTML webform, which is written to data.php.

Vulnerabilities (CVE)