CVE-2009-2919

Name of the Vulnerable Software and Affected Versions: Boonex Orca versions 2.0 through 2.0.2

Description: A cross-site scripting (XSS) issue allows remote authenticated users to inject arbitrary web script or HTML via the topic title field. This could potentially lead to unauthorized actions on the affected system.

Recommendations: For Boonex Orca versions 2.0 through 2.0.2, consider restricting access to the topic title field until a patch is available. As a temporary workaround, validate and sanitize all user input in the topic title field to prevent malicious script injection.