Episodex Guestbook Unauthorized Access and HTML Injection Vulnerability

Summary
The remote host is running the Episodex Guestbook, a guestbook written in ASP. The remote version of this software contains an input validation flaw leading to the execution on attacker supplied HTML and script code. In addition an unauthenticated remote attacker can directly access administrator functions.
Solution
None at this time