[Phpwebsite-developers] Guestbook module exploit

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 422-6466

I've been trying to get hold of the developer of the Guestbook module. 
It's based on another guestbook script from proxy2.de which has had an 
SQL injection exploit discovered recently. I think it's one of 
'badguy's on http://www.chula-rural.net/ which appears to be down. 
Hopefully he's not discovered the exploit through hackers.

http://www.net-security.org/vuln.php?id=3408

I've no idea if the phpwebsite module version is equally at risk so I'd 
thought I'd try a heads-up on the list just in case.

Also, if anyone is hosting with a cpanel.net back end on their system, 
that includes Advanced Guestbook v2.2 in the cgi-center.

The latest version os v2.3.1 but no mention of the exploit being fixed.

Shaun
aegis design - http://www.aegisdesign.co.uk