CVE-2002-1730

Description

ASPjar Guestbook 1.00 allows remote attackers to delete arbitrary messages accessing the delete.asp administrative script with certain cookie values set to "true".

Affected products

• aspjar / aspjar_guestbook1.0 – 1.0

References

• MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/9006
• MISChttp://online.securityfocus.com/archive/82/270970
• MISChttp://www.securityfocus.com/bid/4671
• MISChttp://www.ifrance.com/kitetoua/tuto/5holes4.txt