SummaryMySQLguest by "Allwebscripts is a guestbook script that uses MySQL to store messages".( X9 Z1 x# l0 l0 p' X
6 ^6 n# a8 Y2 W9 TAllwebscripts' MySQLguest is vulnerable to a source code injection vulnerability in the AWSguest.php page. The vulnerability occurs as fields in the AWSguest.php page do not adequately sanitize HTML, script or PHP code.
7 v. @9 t# U# E# d; n0 S* m" B/ [7 H- V2 e) t* D) A) w4 P9 c DetailsIn the AWSguest.php page, any of the following fields can be used to inject arbitrary HTML, JavaScript or PHP: "Name", "Email", "Homepage" and "Comments".) F4 s; b: {. T3 ?" h2 Q5 L/ r
" g; k- n" V6 A% @' h
Exploit:/ M, d* f6 f, T4 u }- H4 _' R3 D
E-mail: <?php echo <p>Hello World</p>" c% z5 E' {. {+ C/ a
Homepage: <script language=javascript>alert ("Messagebox")! }* |* U5 N! Y7 z& M! S3 Z9 a2 B
Comments: <IFRAME SRC=www.computerknights.org>3 s; v6 |- F% g+ a# r2 l
% ]& P( u% P( l/ U) B* @5 w' q
Additional informationThe information has been provided by BliZZard.