Fantastic Guestbook 2.0.1 - 'Guestbook.php' HTML Injection

source: https://www.securityfocus.com/bid/18942/info Fantastic GuestBook is prone to multiple HTML-injection vulnerabilities because it fails to properly sanitize user-supplied input before using it in dynamically generated content. Attacker-supplied HTML and script code would execute in the...

VP-ASP Shopping Cart - 'Shopadmin.asp' HTML Injection

source: https://www.securityfocus.com/bid/15490/info VP-ASP Shopping Cart is prone to an HTML injection vulnerability. This is due to a lack of proper validation of user-supplied input before being used in dynamically generated content. Attacker-supplied HTML and script code would be executed in...