logo Home

Untitled Document

Home > Archives Advisories > Articles


Untitled Document

Untitled Document

AspJar guestbook script injection vulnerability
Date: 2003-04-05

Author : drG4njubas <drG4nj@mail.ru>

This advisory and other useful files
can be found at www.blcktigerz.org

Subject:
AspJar guestbook script injection vulnerability.

Description:
Free Advanced ASP Guestbook Script

Vendor:
http://www.aspjar.com

Vulnerability:
guest.asp neglects filtering user input allowing
for script injection to the guestbook via "URL"
field. The injected script will be executed in
anyones browser who visits the guestbook.

____________________________
Best Regards, drG4njubas
Black Tigerz Research Group
http://www.blacktigerz.org



 

arrowSearch Advisories

arrowNewsletter

Free weekly Newsletter.

Please enter your email address here:
arrowReport Vulnerability

If you've found a vulnerability please
click here to report it.
arrowPartners

newsnow

About Us | Contact Us | Advertise | email | Backend flag
Copyright © 2016-2017 Security Corporation - All Rights Reserved - Legal - Privacy Policy