Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
invision power services invision board 1.1.1 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2004-1785
SQL injection vulnerability in calendar.php for Invision Power Board 1.3 allows remote malicious users to execute arbitrary SQL commands via the m parameter, which sets the $this->chosen_month variable.
Invision Power Services Invision Board 1.3
Invision Power Services Invision Board 1.1.1
Invision Power Services Invision Board 1.2
Invision Power Services Invision Board 1.0
Invision Power Services Invision Board 1.1.2
Invision Power Services Invision Board 1.0.1
NA
CVE-2005-1817
Invision Power Board (IPB) 1.0 up to and including 1.3 allows remote malicious users to edit arbitrary forum posts via a direct request to index.php with modified parameters.
Invision Power Services Invision Board 1.3
Invision Power Services Invision Board 1.1.1
Invision Power Services Invision Board 1.2
Invision Power Services Invision Board 1.0
Invision Power Services Invision Board 1.1.2
Invision Power Services Invision Board 1.3 Final
Invision Power Services Invision Board 1.0.1
1 EDB exploit
NA
CVE-2005-1597
Cross-site scripting (XSS) vulnerability in (1) search.php and (2) topics.php for Invision Power Board (IPB) 2.0.3 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the highlite parameter.
Invision Power Services Invision Board 2.0 Pdr3
Invision Power Services Invision Board 1.3
Invision Power Services Invision Board 1.1.1
Invision Power Services Invision Board 1.2
Invision Power Services Invision Board 1.0
Invision Power Services Invision Power Board 2.0.3
Invision Power Services Invision Board 2.0 Alpha 3
Invision Power Services Invision Board 1.1.2
Invision Power Services Invision Board 1.0.1
1 EDB exploit
NA
CVE-2005-1598
SQL injection vulnerability in Invision Power Board (IPB) 2.0.3 and previous versions allows remote malicious users to execute arbitrary SQL commands via a crafted cookie password hash (pass_hash) that modifies the internal $pid variable.
Invision Power Services Invision Board 2.0 Pdr3
Invision Power Services Invision Board 1.3
Invision Power Services Invision Board 1.1.1
Invision Power Services Invision Board 1.2
Invision Power Services Invision Board 1.0
Invision Power Services Invision Power Board 2.0.3
Invision Power Services Invision Board 2.0 Alpha 3
Invision Power Services Invision Board 1.1.2
Invision Power Services Invision Board 1.0.1
3 EDB exploits
NA
CVE-2005-0477
Cross-site scripting (XSS) vulnerability in the SML code for Invision Power Board 1.3.1 FINAL allows remote malicious users to inject arbitrary web script via (1) a signature file or (2) a message post containing an IMG tag within a COLOR tag whose style is set to background:url.
Invision Power Services Invision Power Board 1.0
Invision Power Services Invision Power Board 1.1.2
Invision Power Services Invision Power Board 1.1.1
Invision Power Services Invision Power Board 1.3 Final
Invision Power Services Invision Power Board 1.2
Invision Power Services Invision Power Board 1.0.1
Invision Power Services Invision Power Board 1.3.1 Final
Invision Power Services Invision Power Board 1.3
1 EDB exploit
NA
CVE-2005-1070
SQL injection vulnerability in index.php in Invision Power Board 1.3.1 Final and previous versions allows remote malicious users to execute arbitrary SQL commands via the st parameter.
Invision Power Services Invision Board 1.3
Invision Power Services Invision Board 1.3.1 Final
Invision Power Services Invision Board 1.1.1
Invision Power Services Invision Board 1.2
Invision Power Services Invision Board 1.0
Invision Power Services Invision Board 1.1.2
Invision Power Services Invision Board 1.3 Final
Invision Power Services Invision Board 1.0.1
1 EDB exploit
NA
CVE-2004-0338
SQL injection vulnerability in search.php for Invision Board Forum allows remote malicious users to execute arbitrary SQL queries via the st parameter.
Invision Power Services Invision Board 2.0 Pdr3
Invision Power Services Invision Board 1.3
Invision Power Services Invision Board 1.1.1
Invision Power Services Invision Board 1.2
Invision Power Services Invision Board 1.0
Invision Power Services Invision Board 2.0 Alpha 3
Invision Power Services Invision Board 1.1.2
Invision Power Services Invision Board 1.0.1
NA
CVE-2003-1454
Invision Power Services Invision Board 1.0 up to and including 1.1.1, when a forum is password protected, stores the administrator password in a cookie in plaintext, which could allow remote malicious users to gain access.
Invision Power Services Invision Board 1.0
Invision Power Services Invision Board 1.0.1
Invision Power Services Invision Board 1.1.1
NA
CVE-2005-1816
Invision Power Board (IPB) 1.0 up to and including 2.0.4 allows non-root admins to add themselves or other users to the root admin group via the "Move users in this group to" screen.
Invision Power Services Invision Board 2.0 Pdr3
Invision Power Services Invision Board 1.3
Invision Power Services Invision Board 1.3.1 Final
Invision Power Services Invision Board 1.1.1
Invision Power Services Invision Board 2.0.3
Invision Power Services Invision Board 1.2
Invision Power Services Invision Board 1.0
Invision Power Services Invision Board 2.0.1
Invision Power Services Invision Board 2.0 Pf2
Invision Power Services Invision Board 2.0.2
Invision Power Services Invision Board 2.0 Alpha 3
Invision Power Services Invision Board 2.0
Invision Power Services Invision Board 1.1.2
Invision Power Services Invision Board 1.3 Final
Invision Power Services Invision Board 2.0.4
Invision Power Services Invision Board 1.0.1
Invision Power Services Invision Board 2.0 Pf1
NA
CVE-2005-0886
Cross-site scripting (XSS) vulnerability in Invision Power Board 2.0.2 and previous versions allows remote malicious users to inject arbitrary web script or HTML via an HTTP POST request.
Invision Power Services Invision Board 2.0 Pdr3
Invision Power Services Invision Board 1.3
Invision Power Services Invision Board 1.3.1 Final
Invision Power Services Invision Board 1.1.1
Invision Power Services Invision Board 1.2
Invision Power Services Invision Board 1.0
Invision Power Services Invision Board 2.0.1
Invision Power Services Invision Board 2.0 Pf2
Invision Power Services Invision Board 2.0.2
Invision Power Services Invision Board 2.0 Alpha 3
Invision Power Services Invision Board 2.0
Invision Power Services Invision Board 1.1.2
Invision Power Services Invision Board 1.3 Final
Invision Power Services Invision Board 1.0.1
Invision Power Services Invision Board 2.0 Pf1
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »