Cross-site scripting (XSS) vulnerability in BadBlue Personal Edition 1.7.3 allows remote attackers to execute arbitrary script as other users by injecting script into the cleanSearchString() function.

BID:5179 | URL:http://www.securityfocus.com/bid/5179 | BUGTRAQ:20020708 BadBlue 1.73 EXT.DLL XSS Variant | URL:http://online.securityfocus.com/archive/1/281141 | XF:badblue-cleansearchstring-xss(9514) | URL:https://exchange.xforce.ibmcloud.com/vulnerabilities/9514