Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
invision power services invision board 1.3 final vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-3544
Multiple SQL injection vulnerabilities in Invision Power Board (IPB) 1.3 Final allow remote malicious users to execute arbitrary SQL commands via the CODE parameter in a (1) Stats, (2) Mail, and (3) Reg action in index.php. NOTE: the developer has disputed this issue, stating tha...
Invision Power Services Invision Board 1.3.1 Final
Invision Power Services Invision Board 1.3 Final
NA
CVE-2005-1070
SQL injection vulnerability in index.php in Invision Power Board 1.3.1 Final and previous versions allows remote malicious users to execute arbitrary SQL commands via the st parameter.
Invision Power Services Invision Board 1.3
Invision Power Services Invision Board 1.3.1 Final
Invision Power Services Invision Board 1.0
Invision Power Services Invision Board 1.0.1
Invision Power Services Invision Board 1.3 Final
Invision Power Services Invision Board 1.1.1
Invision Power Services Invision Board 1.1.2
Invision Power Services Invision Board 1.2
1 EDB exploit
NA
CVE-2005-0477
Cross-site scripting (XSS) vulnerability in the SML code for Invision Power Board 1.3.1 FINAL allows remote malicious users to inject arbitrary web script via (1) a signature file or (2) a message post containing an IMG tag within a COLOR tag whose style is set to background:url.
Invision Power Services Invision Power Board 1.3
Invision Power Services Invision Power Board 1.3.1 Final
Invision Power Services Invision Power Board 1.1.2
Invision Power Services Invision Power Board 1.2
Invision Power Services Invision Power Board 1.0
Invision Power Services Invision Power Board 1.3 Final
Invision Power Services Invision Power Board 1.0.1
Invision Power Services Invision Power Board 1.1.1
1 EDB exploit
NA
CVE-2004-2279
Cross-site scripting (XSS) vulnerability in Invision Power Board 1.3 Final allows remote malicious users to execute arbitrary script as other users via the pop parameter in a chat action to index.php.
Invision Power Services Invision Power Board 1.3 Final
NA
CVE-2004-0355
Invision Power Board 1.3 Final allows remote malicious users to gain sensitive information by selecting a file for "Personal Photo" that is not an image file, which displays the installation path in an error message.
Invision Power Services Invision Board 1.3
NA
CVE-2004-0359
Cross-site scripting (XSS) vulnerability in index.php for Invision Power Board 1.3 final allows remote malicious users to execute arbitrary script as other users via the (1) c, (2) f, (3) showtopic, (4) showuser, or (5) username parameters.
Invision Power Services Invision Board 1.3.1 Final
Invision Power Services Invision Board 1.3 Final
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started