|
Family: CGI abuses --> Category: infos
Skull-Splitter Guestbook Multiple HTML Injection Vulnerabilities Vulnerability Scan
Vulnerability Scan Summary Skull-Splitter Guestbook Multiple HTML Injection Vulnerabilities
Detailed Explanation for this Vulnerability Test
The remote host is running the Skull-Splitter guestbook, a guestbook
written in PHP.
The remote version of this software is vulnerable to cross-site
scripting attacks. Inserting special characters into the subject
or message content can cause arbitrary code execution for third
party users, thus resulting in a loss of integrity of their
system.
Solution : None at this time
Threat Level: Medium
Click HERE for more information and discussions on this network vulnerability scan.
|