ASPjar Guestbook 1.00 allows remote attackers to delete arbitrary messages accessing the delete.asp administrative script with certain cookie values set to "true".Referenceshttps://exchange.xforce.ibmcloud.com/vulnerabilities/9006http://online.securityfocus.com/archive/82/270970http://www.securityfocus.com/bid/4671http://www.ifrance.com/kitetoua/tuto/5holes4.txt
