BirdBlog BB Code HTML Injection Vulnerability

BirdBlog BB Code HTML Injection Vulnerability

BirdBlog is prone to an HTML injection vulnerability. BB code is not properly santized before being rendered as content.

HTML injection may allow for theft of cookie-based authentication credentials or other attacks.

This issue was addressed in BirdBlog 1.3.1; all earlier versions are likely affected.