Land Down Under - BBCode HTML Injection

Author: Tim De Gier
type: webapps
platform: php
port: 
date_added: 2004-05-29 
date_updated: 2013-01-15 
verified: 1 
codes: CVE-2004-2038;OSVDB-6508 
tags: 
aliases:  
screenshot_url:  
application_url: 

source: https://www.securityfocus.com/bid/10435/info

Land Down Under is prone to an HTML injection vulnerability. This issue is exposed through their BBCode implementation. Exploitation could permit theft of cookie credentials, manipulation of content, or other attacks.

[img]javascript:alert(document.cookie);[/img]