icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

BiTBOARD IMG BBCode Tag JavaScript XSS

Medium

Synopsis

The remote host is vulnerable to a Script Injection attack

Description

The remote host is running BiTBOARD, a web based bulletin board written in PHP. There is a JavaScript injection vulnerability in the remote version of this software that may allow an attacker to steal user's cookie to gain unauthorized access.

Solution

No solution is known at this time.