CVE-2009-0285

Name of the Vulnerable Software and Affected Versions BBSXP versions 5.13 and earlier

Description A cross-site scripting (XSS) issue exists, allowing remote attackers to inject arbitrary web script or HTML. This is achieved via the message parameter in the error.asp file.

Recommendations For BBSXP versions 5.13 and earlier, update to a version later than 5.13 to resolve the issue. As a temporary workaround, consider restricting access to the error.asp file or sanitizing input for the message parameter to minimize the risk of exploitation.