Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

invision power services invision power board 2.2.2 vulnerabilities and exploits

(subscribe to this query)
7.8
CVSSv2
CVE-2007-3219
Unspecified vulnerability in sources/action_public/xmlout.php in Invision Power Board (IPB or IP.Board) 2.2.0 up to and including 2.2.2 allows remote malicious users to modify another user's profile data, such as an AIM screen name or Yahoo! identity.
Invision Power Services Invision Power Board 2.2Invision Power Services Invision Power Board 2.2.1Invision Power Services Invision Power Board 2.2.2
6
CVSSv2
CVE-2007-4914
Unspecified vulnerability in the subscriptions manager in Invision Power Board (IPB or IP.Board) 2.3.1 prior to 20070912 allows remote authenticated users to change the member ID and reduce the privilege level of arbitrary users via a crafted payment form, related to (1) class_gw...
Invision Power Services Invision Power Board 2.1.5 2006-03-08Invision Power Services Invision Power Board 2.1.5 2006-04-25Invision Power Services Invision Power Board 2.1.6Invision Power Services Invision Power Board 2.2.2Invision Power Services Invision Power BoardInvision Power Services Invision Power Board 2.2Invision Power Services Invision Power Board 2.2.1
7.5
CVSSv2
CVE-2007-4913
ips_kernel/class_upload.php in Invision Power Board (IPB or IP.Board) 2.3.1 up to 20070912 allows remote malicious users to upload arbitrary script files with crafted image filenames to uploads/, where they are saved with a .txt extension and are not executable. NOTE: there are l...
Invision Power Services Invision Power Board 2.1.5 2006-04-25Invision Power Services Invision Power Board 2.2Invision Power Services Invision Power Board 2.2.1Invision Power Services Invision Power Board 2.2.2Invision Power Services Invision Power BoardInvision Power Services Invision Power Board 2.1.5 2006-03-08Invision Power Services Invision Power Board 2.1.6
4.3
CVSSv2
CVE-2007-4912
Cross-site scripting (XSS) vulnerability in ips_kernel/class_ajax.php in Invision Power Board (IPB or IP.Board) 2.3.1 up to 20070912 allows remote malicious users to inject arbitrary web script or HTML into user profile fields via unspecified vectors related to character sets oth...
Invision Power Services Invision Power Board 2.1.5 2006-04-25Invision Power Services Invision Power Board 2.1.6Invision Power Services Invision Power Board 2.2Invision Power Services Invision Power Board 2.2.1Invision Power Services Invision Power Board 2.1.5 2006-03-08Invision Power Services Invision Power Board 2.2.2
4.3
CVSSv2
CVE-2008-6565
Cross-site scripting (XSS) vulnerability in Invision Power Board 2.3.1 and previous versions allows remote malicious users to inject arbitrary web script or HTML via an IFRAME tag in the signature.
Invision Power Services Invision Power Board 2.3Invision Power Services Invision Power Board 1.0.3Invision Power Services Invision Power Board 1.2Invision Power Services Invision Power Board 2.0.3Invision Power Services Invision Power Board 2.0.0Invision Power Services Invision Power Board 2.1.5 2006-03-08Invision Power Services Invision Power Board 2.1.5Invision Power Services Invision Power Board 2.1 Beta3Invision Power Services Invision Power Board 2.1 Beta2Invision Power Services Invision Power Board 2.2.2Invision Power Services Invision Power Board 2.2.1Invision Power Services Invision Power BoardInvision Power Services Invision Power Board 1.3 FinalInvision Power Services Invision Power Board 1.0.1Invision Power Services Invision Power Board 2.0 Pf1Invision Power Services Invision Power Board 2.0 Alpha3Invision Power Services Invision Power Board 2.1.2Invision Power Services Invision Power Board 2.0 Pf2Invision Power Services Invision Power Board 2.1Invision Power Services Invision Power Board 2.1.5 2006-04-25Invision Power Services Invision Power Board 2.1.xInvision Power Services Invision Power Board 2.1.7
4.3
CVSSv2
CVE-2007-2963
Multiple cross-site scripting (XSS) vulnerabilities in Invision Power Board (IPB or IP.Board) 2.2.2, and possibly earlier, allows remote malicious users to inject arbitrary web script or HTML via (1) module_bbcodeloader.php, (2) module_div.php, (3) module_email.php, (4) module_im...
Invision Power Services Invision Power Board
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581reflected XSSCVE-2024-26925CVE-2024-27956LFICVE-2024-3607CVE-2024-3107CVE-2024-3295SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook