Exploitation Summary
EIP tracks 1 public exploit for CVE-2002-1845. PoCs published by Nir Adar.
AI-analyzed exploit summary This exploit demonstrates a cross-site scripting (XSS) vulnerability in YaBB forum login script. It allows arbitrary script execution via the password field, enabling cookie theft and session hijacking.
Description
Cross-site scripting (XSS) vulnerability in index.php in Yet Another Bulletin Board (YaBB) 1.40 and 1.41 allows remote attackers to inject arbitrary web script or HTML via the password (passwrd) parameter.
Exploits (1)
This exploit demonstrates a cross-site scripting (XSS) vulnerability in YaBB forum login script. It allows arbitrary script execution via the password field, enabling cookie theft and session hijacking.