CVE-2002-1729

Description

Cross-site scripting vulnerability (XSS) in ASPjar Guestbook 1.00 allows remote attackers to execute arbitrary script as other users via the "web site" parameter in a guestbook message.

Affected products

• aspjar / aspjar_guestbook1.0 – 1.0

References

• MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/9005
• MISChttp://online.securityfocus.com/archive/82/270970
• MISChttp://www.securityfocus.com/bid/4671
• MISChttp://www.ifrance.com/kitetoua/tuto/5holes4.txt