← CVECheck
HomeVulnerabilities

CVE-2001-0897 — MEDIUM severity vulnerability (Cross-site scripting vulnerability in Infopop Ultimate Bulle)

Cross-site scripting vulnerability in Infopop Ultimate Bulletin Board (UBB) before 5.47e allows remote attackers to steal user cookies via an [IMG] tag that references an about: URL with an onerror field.

CVE IDCVE-2001-0897
SeverityMEDIUM
CVSS score5.0
CVSS vectorAV:N/AC:L/Au:N/C:P/I:N/A:N
CWENVD-CWE-Other
StatusModified
Published2001-11-15
Last modified2026-04-16
DescriptionCross-site scripting vulnerability in Infopop Ultimate Bulletin Board (UBB) before 5.47e allows remote attackers to steal user cookies via an [IMG] tag that references an about: URL with an onerror field.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →