Description - Multiple XSS Vulnerabilities in B-net Software

Cross Site Scripting found in B-net Software script.

Exploit
Available
Solution
Not available - check vendor's website

Vulnerable scripts: shout.phpguestbook.php

Variables:
$name $shout in shout.php
$title $message in guestbook.php

- not properly sanitized. This can be used to post arbitrary html or script code which will be executed in the browser of every guestbook visitor.

Order Source Code Audit made by eVuln

Check your site by source code audit of your website or web application made by our team.The order will be done by experts in web application security.

Advisories by vuln type