Savas Place Savas Guestbook — known CVE vulnerabilities
Every CVE whose affected-product data names Savas Place Savas Guestbook, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2008-1642 — CVSS 7.5 (high): Directory traversal vulnerability in index.php in Sava's GuestBook 2.0 allows remote attackers to include and execute arbitrary local files…
CVE-2007-1304 — CVSS 6.8 (medium): Multiple SQL injection vulnerabilities in add2.php in Sava's Guestbook 23.11.2006, when magic_quotes_gpc is disabled, allow remote…
CVE-2007-1305 — CVSS 6.8 (medium): Multiple cross-site scripting (XSS) vulnerabilities in add2.php in Sava's Guestbook 23.11.2006 allow remote attackers to inject arbitrary…