CVE-2006-3526
Multiple cross-site scripting (XSS) vulnerabilities in guestbook.php in Sport-slo Advanced Guestbook 1.0 allow remote attackers to inject arbitrary web script or HTML via (1) name and (2) form parameters.
Date published : 2006-07-11
http://www.securityfocus.com/archive/1/439491/100/0/threaded