Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

invision power services invision power board 2.1.x vulnerabilities and exploits

(subscribe to this query)
NA
CVE-2006-2060
Directory traversal vulnerability in action_admin/paysubscriptions.php in Invision Power Board (IPB) 2.1.x and 2.0.x prior to 20060425 allows remote authenticated administrators to include and execute arbitrary local PHP files via a .. (dot dot) in the name parameter, preceded by...
Invision Power Services Invision Power Board 2.0.xInvision Power Services Invision Power Board 2.1.x
NA
CVE-2008-6565
Cross-site scripting (XSS) vulnerability in Invision Power Board 2.3.1 and previous versions allows remote malicious users to inject arbitrary web script or HTML via an IFRAME tag in the signature.
Invision Power Services Invision Power Board 2.3Invision Power Services Invision Power Board 1.0.3Invision Power Services Invision Power Board 1.2Invision Power Services Invision Power Board 2.0.3Invision Power Services Invision Power Board 2.0.0Invision Power Services Invision Power Board 2.1.5 2006-03-08Invision Power Services Invision Power Board 2.1.5Invision Power Services Invision Power Board 2.1 Beta3Invision Power Services Invision Power Board 2.1 Beta2Invision Power Services Invision Power Board 2.2.2Invision Power Services Invision Power Board 2.2.1Invision Power Services Invision Power BoardInvision Power Services Invision Power Board 1.3 FinalInvision Power Services Invision Power Board 1.0.1Invision Power Services Invision Power Board 2.0 Pf1Invision Power Services Invision Power Board 2.0 Alpha3Invision Power Services Invision Power Board 2.1.2Invision Power Services Invision Power Board 2.0 Pf2Invision Power Services Invision Power Board 2.1Invision Power Services Invision Power Board 2.1.5 2006-04-25Invision Power Services Invision Power Board 2.1.xInvision Power Services Invision Power Board 2.1.7
NA
CVE-2006-2061
SQL injection vulnerability in lib/func_taskmanager.php in Invision Power Board (IPB) 2.1.x and 2.0.x prior to 20060425 allows remote malicious users to execute arbitrary SQL commands via the ck parameter, which can inject at most 32 characters.
Invision Power Services Invision Board 2.0 Alpha 3Invision Power Services Invision Board 2.0 Pdr3Invision Power Services Invision Board 2.0Invision Power Services Invision Board 2.0 Pf1Invision Power Services Invision Board 2.0 Pf2Invision Power Services Invision Board 2.0.1Invision Power Services Invision Board 2.0.2Invision Power Services Invision Board 2.1Invision Power Services Invision Board 2.1.5Invision Power Services Invision Board 2.0.3Invision Power Services Invision Board 2.0.4Invision Power Services Invision Board 2.1 Alpha2Invision Power Services Invision Power Board 2.1.5 2006-03-08
NA
CVE-2007-2349
Cross-site scripting (XSS) vulnerability in Invision Power Board (IP.Board) 2.1.x and 2.2.x allows remote malicious users to inject arbitrary web script or HTML by uploading crafted images or PDF files.
Invision Power Services Invision Power Board 2.1Invision Power Services Invision Power Board 2.2
NA
CVE-2006-2059
action_public/search.php in Invision Power Board (IPB) 2.1.x and 2.0.x prior to 20060425 allows remote malicious users to execute arbitrary PHP code via a search with a crafted value of the lastdate parameter, which alters the behavior of a regular expression to add a "#e&qu...
Invision Power Services Invision Power Board 2.1.5 2006-03-08
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypassCVE-2024-30051remoteCVE-2024-27954CVE-2023-51483CVE-2023-47782SSRFCVE-2024-24715CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook