Vulnerabilities > CVE-2002-0117 - Unspecified vulnerability in Yabb
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN yabb
exploit available
Summary
Cross-site scripting vulnerability in Yet Another Bulletin Board (YaBB) 1 Gold SP 1 and earlier allows remote attackers to execute arbitrary script and steal cookies via a message containing encoded Javascript in an IMG tag.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 4 |
Exploit-Db
| description | YaBB 9.1.2000 Cross-Agent Scripting Vulnerability. CVE-2002-0117 . Webapps exploit for cgi platform |
| id | EDB-ID:21208 |
| last seen | 2016-02-02 |
| modified | 2002-01-09 |
| published | 2002-01-09 |
| reporter | Obscure |
| source | https://www.exploit-db.com/download/21208/ |
| title | YaBB 9.1.2000 - Cross-Agent Scripting Vulnerability |
References
- http://online.securityfocus.com/archive/1/249031
- http://online.securityfocus.com/archive/1/249031
- http://online.securityfocus.com/cgi-bin/vulns-item.pl?section=info&id=3828
- http://online.securityfocus.com/cgi-bin/vulns-item.pl?section=info&id=3828
- http://www.iss.net/security_center/static/7840.php
- http://www.iss.net/security_center/static/7840.php
- http://www.osvdb.org/2019
- http://www.osvdb.org/2019
- http://www.yabbforum.com/
- http://www.yabbforum.com/