Multiple XSS and SQL Injection in Vanilla Guestbook

Summary

Vulnerability
Multiple XSS and SQL Injection in Vanilla Guestbook
Discovered
2006.02.01
Last Update
2006.02.11 Exploitation code published
ID
EV0054
CVE
CVE-2006-0540 CVE-2006-0541
Risk Level
medium
Type
Multiple Vulnerabilities
Status
Unpatched
Vendor
n/a
Vulnerable Software
Vanilla Guestbook (http://tachyondecay.net/)
Version
1.0 Beta
PoC/Exploit
Available
Solution
Not available
Discovered by
Aliaksandr Hartsuyeu (eVuln.com)

Description

Multiple Vulnerabilities found in Vanilla Guestbook (http://tachyondecay.net/) script.

Most of user defined data isn't properly sanitized. This can be used to make any SQL query by injecting arbitrary SQL code or insert any javascript code (when posting new messages).

PoC/Exploit

XSS Example.

Posting new message:

Name: <XSS>

Solution.

Solution for "Multiple XSS and SQL Injection in Vanilla Guestbook" is not available. Check vendor's website for updates.