CVE-2006-7076

Cross-site scripting (XSS) vulnerability in guestbook.php in Advanced Guestbook 2.4 for phpBB allows remote attackers to inject arbitrary web script or HTML via the entry parameter. NOTE: this issue might be resultant from SQL injection.

Date published : 2007-02-27

http://archives.neohapsis.com/archives/bugtraq/2006-07/0381.html

http://www.majorsecurity.de/advisory/major_rls25.txt