VULHUB ™

Zap Book is a freely available, open source guest book. It is designed for Unix and Linux operating systems. Zap Book does not properly filter script code from some fields of the guest book entries. It is possible for a remote user to enter HTML and script code in the name, email, homepage, and location fields. Upon visiting the page, this script code would be executed in browser of the visiting user.

Zap Book is a freely available, open source guest book. It is designed for Unix and Linux operating systems. Zap Book does not properly filter script code from some fields of the guest book entries. It is possible for a remote user to enter HTML and script code in the name, email, homepage, and location fields. Upon visiting the page, this script code would be executed in browser of the visiting user.