VULHUB ™

ASPJar Advanced ASP Guestbook is prone to HTML injection attacks. It is possible for a malicious guestbook user to inject hostile HTML and script code into the guestbook via form fields. This code may be rendered in the browser of a web user who views the guestbook. In addition to this, an unauthenticated "delete" script allows removal of other guestbook entries.

ASPJar Advanced ASP Guestbook is prone to HTML injection attacks. It is possible for a malicious guestbook user to inject hostile HTML and script code into the guestbook via form fields. This code may be rendered in the browser of a web user who views the guestbook. In addition to this, an unauthenticated "delete" script allows removal of other guestbook entries.