CVE-2004-1982 Information

Description

Post.pl in YaBB 1 Gold SP 1.2 allows remote attackers to modify records in the board’s .txt file via carriage return characters in the subject field.

Reference

http://marc.info/?l=bugtraq&m=108360430703935&w=2 http://secunia.com/advisories/12609 http://www.securityfocus.com/bid/10263 http://www.yabbforum.com/community/YaBB.pl?board=general;action=display;num=1093133233 https://exchange.xforce.ibmcloud.com/vulnerabilities/16050