MEDIUM
Ampps
CVE published 2026-05-10
CVE-2021-47950
CVE-2021-47950 is a persistent cross-site scripting issue reported in Advanced Guestbook 2.4.4's smilies administration interface. An authenticated attacker can submit crafted POST data to admin.php using the s_emotion parameter so that JavaScript is stored and later runs when an administrator opens the smilies tab. Because the payload executes in an administrative browser context, the issue can affect pr [truncated]