VULHUB ™

It has been reported that in some cases MyGuestbook fails to validate the authenticity of a remote user before taking privileged actions. The attacker may attain the ability to modify data contained in a guest book without the software sufficiently checking whether the operation is permitted for the user. This vulnerability has been reported for MyGuestbook version 3.0, previous versions may also be affected.

It has been reported that in some cases MyGuestbook fails to validate the authenticity of a remote user before taking privileged actions. The attacker may attain the ability to modify data contained in a guest book without the software sufficiently checking whether the operation is permitted for the user. This vulnerability has been reported for MyGuestbook version 3.0, previous versions may also be affected.