Synopsis
The remote host is running Ocean12 Guestbook, a set of scripts designed to manage an on-line guestbook.
Description
The remote host is running Ocean12 Guestbook, a set of scripts designed to manage an on-line guestbook. There is a flaw in this program which may be abused by attackers to inject malicious HTML code in the remote site, which may be used to steal the cookies of legitimate users.
Solution
No solution is known at this time.
Plugin Details
Nessus ID: 11537
Reference Information
BID: 7329
