CVE-2007-0141

Name of the Vulnerable Software and Affected Versions Yet Another Link Directory version 1.0

Description A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML via the search parameter in the yald.php file. This enables attackers to execute malicious scripts on the victim's browser.

Recommendations For Yet Another Link Directory version 1.0, consider restricting access to the yald.php file or disabling the search functionality until a patch is available. As a temporary workaround, avoid using the search parameter in the affected API endpoint until the issue is resolved.