NPDS BB HTML Injection Vulnerability

NPDS BB HTML Injection Vulnerability

A vulnerability is reported in NPDS BB that may allow a remote attacker to execute HTML and script code in a user's browser.

The problem exists due to insufficient sanitization of user-supplied input. It may be possible for an attacker to include malicious HTML code in a vulnerable text field. The injected code would be interpreted by the browser of a user visiting the vulnerable site when the malicious HTML code is viewed.