cleantalk
Vulnerabilities and Security Researches

Gwolle Guestbook, CVE-2018-17884

CVE, Research URL

CVE-2018-17884

Home page URL

Security reports for Gwolle Guestbook

Application

Gwolle Guestbook

Published on
Oct 02, 2018
Research Description
XSS exists in admin/gb-dashboard-widget.php in the Gwolle Guestbook (gwolle-gb) plugin before 2.5.4 for WordPress via the PATH_INFO to wp-admin/index.php
Affected versions
Min -, max 2.5.4.
Status
vulnerable
Previous vulnerability researches
Gwolle Guestbook (CVE-2025-5807) , Jul 13, 2025
Gwolle Guestbook , Feb 12, 2025
Gwolle Guestbook (CVE-2025-24710) , Feb 02, 2025
Gwolle Guestbook (CVE-2018-17884) , Jun 06, 2024
Gwolle Guestbook (CVE-2015-8351) , Jun 06, 2024
New vulnerability
WP Register Profile With Shortcode (CVE-2025-4593) , Jul 13, 2025
Simple File List (CVE-2025-34085) , Jul 13, 2025
Pakke Envíos (CVE-2025-52819) , Jul 13, 2025
Gwolle Guestbook (CVE-2025-5807) , Jul 13, 2025
Tennis Court Bookings (CVE-2025-52787) , Jul 13, 2025