BugTraq
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
 
Big Blue Guestbook HTML Injection Vulnerabilities Apr 23 2007 11:05AM
seko se-ko info
Hi friends,

Big Blue Guestbook software is prone to HTML injection attacks. This issue is exposed via the message form field in the

guestbook entry submission form.

Exploitation could permit remote attackers to persistently inject hostile HTML and script code into guestbook content. This

co...

[ more ]  
 

Privacy Statement
Copyright 2010, SecurityFocus