Bhst

**Name of the Vulnerable Software and Affected Versions** Advanced Guestbook version 2.2 **Description** The issue allows remote attackers to execute arbitrary SQL commands and gain privileges via the `username` field in the admin.php file. **Recommendations** For Advanced Guestbook version 2.2, update the software to a version that fixes the SQL injection issue in the admin.php file, specifically ensuring the `username` field is properly sanitized to prevent arbitrary SQL command execution.