Cross-site scripting (XSS) vulnerability in usersrecentposts in YaBB 2.0 rc1 allows remote attackers to inject arbitrary web script or HTML via the username parameter.Referenceshttp://securitytracker.com/id?1013420http://marc.info/?l=bugtraq&m=111083400601759&w=2https://exchange.xforce.ibmcloud.com/vulnerabilities/19671http://www.securityfocus.com/bid/12756
