cleantalk
Vulnerabilities and Security Researches

Gwolle Guestbook, CVE-2018-17884

CVE, Research URL

CVE-2018-17884

Home page URL

Security reports for Gwolle Guestbook

Application

Gwolle Guestbook

Published on
Oct 02, 2018
Research Description
XSS exists in admin/gb-dashboard-widget.php in the Gwolle Guestbook (gwolle-gb) plugin before 2.5.4 for WordPress via the PATH_INFO to wp-admin/index.php
Affected versions
max 2.5.4.
Status
vulnerable
Previous vulnerability researches
Gwolle Guestbook (CVE-2025-5807) , Jul 13, 2025
Gwolle Guestbook , Feb 12, 2025
Gwolle Guestbook (CVE-2025-24710) , Feb 02, 2025
Gwolle Guestbook (CVE-2018-17884) , Jun 06, 2024
Gwolle Guestbook (CVE-2015-8351) , Jun 06, 2024
New vulnerability
OOPSpam Anti-Spam (CVE-2026-32544) , Mar 31, 2026
NotificationX – Best FOMO, Social Proof, WooCommerce Sales Popup & Notification Bar Plugin With Elementor (CVE-2026-27042) , Mar 31, 2026
The Conference (CVE-2026-32335) , Mar 31, 2026
WP Booking System – Booking Calendar (CVE-2025-68515) , Mar 31, 2026
UPI QR Code Payment Gateway for WooCommerce (CVE-2025-67969) , Mar 31, 2026