Exploitation Summary
EIP tracks 1 public exploit for CVE-2002-2296. PoCs published by Fabricio Angeletti.
AI-analyzed exploit summary This exploit demonstrates a cross-site scripting (XSS) vulnerability in YaBB forum due to insufficient sanitization of URI parameters. The malicious link executes arbitrary JavaScript in the context of the vulnerable site, potentially stealing cookie-based authentication credentials.
Description
Cross-site scripting (XSS) vulnerability in YaBB.pl in Yet Another Bulletin Board (YaBB) 1 Gold SP 1 allows remote attackers to inject arbitrary web script or HTML via the num parameter.
Exploits (1)
This exploit demonstrates a cross-site scripting (XSS) vulnerability in YaBB forum due to insufficient sanitization of URI parameters. The malicious link executes arbitrary JavaScript in the context of the vulnerable site, potentially stealing cookie-based authentication credentials.