FTLS GuestBook Script Injection Vulnerability

The following proof of concept was provided by inserting malicious HTML code into the Title, Name and Comment fields:

<script>alert('test')</script>


 

Privacy Statement
Copyright 2010, SecurityFocus