SQL Injection Vulnerability in Advanced Guestbook 2.2 Allows Remote Code Execution and Privilege Escalation

SQL Injection Vulnerability in Advanced Guestbook 2.2 Allows Remote Code Execution and Privilege Escalation

CVE-2005-3588 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

SQL injection vulnerability in admin.php in Advanced Guestbook 2.2 allows remote attackers to execute arbitrary SQL commands and gain privileges via the username field.

Learn more about our User Device Pen Test.