CVE-2002-0326

Name of the Vulnerable Software and Affected Versions BadBlue versions prior to 1.6.1 beta

Description A cross-site scripting issue allows remote attackers to execute arbitrary script and possibly additional commands via a URL that contains Javascript.

Recommendations For versions prior to 1.6.1 beta, update to version 1.6.1 beta or later to resolve the issue. As a temporary workaround, consider restricting access to URLs that contain Javascript to minimize the risk of exploitation.