5.9 Medium
AI Score
Confidence
High
0.004 Low
EPSS
Percentile
74.6%
Cross-site scripting (XSS) vulnerability in index.php in Yet Another Bulletin Board (YaBB) 1.40 and 1.41 allows remote attackers to inject arbitrary web script or HTML via the password (passwrd) parameter.
online.securityfocus.com/archive/1/296121
www.iss.net/security_center/static/10406.php
www.securityfocus.com/bid/6004