Collected Security Fixes SP1.1 0.3 - refixes executing code through the browser address bar by typing HTML into the NUM variable - refixes executing code through the IM system by typing in HTML into the TO line - refixes executing code through the Post Preview by using - fixed executing code through $INFO{'title'} YaBB Dev Team http://www.yabbforum.com Sources/Subs.pl $action = $INFO{'action'}; &check_input; sub readform { sub check_input { $INFO{'num'} =~ s/\D//g; $FORM{'num'} =~ s/\D//g; $INFO{'thread'} =~ s/\D//g; $FORM{'thread'} =~ s/\D//g; $INFO{'threadid'} =~ s/\D//g; $FORM{'threadid'} =~ s/\D//g; &ToHTML($INFO{'title'}); &ToHTML($FORM{'title'}); &ToHTML($INFO{'subject'}); &ToHTML($FORM{'subject'}); } sub fatal_error { my $e = $_[0]; &ToHTML($e); Sources/Post.pl if ($FORM{'waction'} =~ /preview/) {$txt{'507'}=$txt{'771'};} &ToHTML($message);