SQL injection vulnerability in guestbookview.asp in Techno Dreams Guest Book 1.0 earlier allows remote attackers to execute arbitrary SQL commands via the key parameter.
https://www.exploit-db.com/exploits/2684
https://exchange.xforce.ibmcloud.com/vulnerabilities/29869