Doika Guestbook GBook.PHP HTML Injection Vulnerability

info
discussion
exploit
solution
references

Doika Guestbook GBook.PHP HTML Injection Vulnerability

Doika Guestbook is prone to an HTML-injection vulnerability. An attacker may inject hostile HTML and script code into vulnerable sections of the application. When viewed, this code may be rendered in the browser of a user visiting the site in the context of the affected website.