CVE-2002-0590

Name of the Vulnerable Software and Affected Versions IcrediBB version 1.1 Beta

Description A cross-site scripting issue allows remote attackers to execute arbitrary script and steal cookies as other IcrediBB users via the title or body of posts.

Recommendations For IcrediBB version 1.1 Beta, consider validating and sanitizing user input in the title and body of posts to prevent the execution of arbitrary scripts. As a temporary workaround, restrict the ability to post content that may contain scripts until a fix is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.