Keep It Simple Guest Book » Keep It Simple Guest Book : Security Vulnerabilities, CVEs,
PHP remote file inclusion vulnerability in authenticate.php in Keep It Simple Guest Book (KISGB), when executing PHP through CGI, allows remote attackers to execute arbitrary PHP code via a URL in the default_path_to_themes parameter.
Max CVSS
6.8
EPSS Score
1.10%
Published
2006-12-27
Updated
2017-10-19
Multiple PHP remote file inclusion vulnerabilities in the Keep It Simple Guest Book (KISGB) allow remote attackers to execute arbitrary PHP code via a URL in the (1) path_to_themes parameter in (a) authenticate.php, and the (2) default_path_for_themes parameter in (b) admin.php and (c) upconfig.php.
Max CVSS
7.5
EPSS Score
0.51%
Published
2006-12-27
Updated
2018-10-17
2 vulnerabilities found