1Two Livre D'Or Guestbook.PHP Multiple HTML Injection Vulnerabilities

1Two Livre D'Or is prone to multiple HTML injection vulnerabilities in the 'guestbook.php' script. Attacker-supplied HTML and script code would be able to access properties of the site, potentially allowing for theft of cookie-based authentication credentials. An attacker could also exploit this issue to control how the site is rendered to the user; other attacks are also possible.


 

Privacy Statement
Copyright 2010, SecurityFocus