Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
invision power services invision power board vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2008-0913
Cross-site scripting (XSS) vulnerability in Invision Power Board (IPB or IP.Board) 2.3.4 allows remote malicious users to inject arbitrary web script or HTML via crafted BBCodes in an unspecified context.
Invision Power Services Invision Power Board 2.3.4
7.5
CVSSv2
CVE-2007-5688
Multiple SQL injection vulnerabilities in directory.php in the Multi-Forums (aka Multi Host Forum Pro) module 1.3.3, for phpBB and Invision Power Board (IPB or IP.Board), allow remote malicious users to execute arbitrary SQL commands via the (1) go and (2) cat parameters.
Phpbb Phpbb
Sebflipper Multi-forums Module 1.3.3
Invision Power Services Invision Power Board
1 EDB exploit
4.3
CVSSv2
CVE-2007-4912
Cross-site scripting (XSS) vulnerability in ips_kernel/class_ajax.php in Invision Power Board (IPB or IP.Board) 2.3.1 up to 20070912 allows remote malicious users to inject arbitrary web script or HTML into user profile fields via unspecified vectors related to character sets oth...
Invision Power Services Invision Power Board 2.2
Invision Power Services Invision Power Board 2.2.2
Invision Power Services Invision Power Board 2.1.6
Invision Power Services Invision Power Board 2.1.5 2006-03-08
Invision Power Services Invision Power Board 2.1.5 2006-04-25
Invision Power Services Invision Power Board 2.2.1
7.5
CVSSv2
CVE-2007-4913
ips_kernel/class_upload.php in Invision Power Board (IPB or IP.Board) 2.3.1 up to 20070912 allows remote malicious users to upload arbitrary script files with crafted image filenames to uploads/, where they are saved with a .txt extension and are not executable. NOTE: there are l...
Invision Power Services Invision Power Board 2.2
Invision Power Services Invision Power Board 2.2.2
Invision Power Services Invision Power Board 2.1.6
Invision Power Services Invision Power Board 2.1.5 2006-03-08
Invision Power Services Invision Power Board 2.1.5 2006-04-25
Invision Power Services Invision Power Board 2.2.1
Invision Power Services Invision Power Board
6
CVSSv2
CVE-2007-4914
Unspecified vulnerability in the subscriptions manager in Invision Power Board (IPB or IP.Board) 2.3.1 prior to 20070912 allows remote authenticated users to change the member ID and reduce the privilege level of arbitrary users via a crafted payment form, related to (1) class_gw...
Invision Power Services Invision Power Board 2.2
Invision Power Services Invision Power Board 2.2.2
Invision Power Services Invision Power Board 2.1.6
Invision Power Services Invision Power Board 2.1.5 2006-03-08
Invision Power Services Invision Power Board 2.1.5 2006-04-25
Invision Power Services Invision Power Board 2.2.1
Invision Power Services Invision Power Board
7.8
CVSSv2
CVE-2007-3219
Unspecified vulnerability in sources/action_public/xmlout.php in Invision Power Board (IPB or IP.Board) 2.2.0 up to and including 2.2.2 allows remote malicious users to modify another user's profile data, such as an AIM screen name or Yahoo! identity.
Invision Power Services Invision Power Board 2.2
Invision Power Services Invision Power Board 2.2.2
Invision Power Services Invision Power Board 2.2.1
4.3
CVSSv2
CVE-2007-2963
Multiple cross-site scripting (XSS) vulnerabilities in Invision Power Board (IPB or IP.Board) 2.2.2, and possibly earlier, allows remote malicious users to inject arbitrary web script or HTML via (1) module_bbcodeloader.php, (2) module_div.php, (3) module_email.php, (4) module_im...
Invision Power Services Invision Power Board
5.8
CVSSv2
CVE-2007-2349
Cross-site scripting (XSS) vulnerability in Invision Power Board (IP.Board) 2.1.x and 2.2.x allows remote malicious users to inject arbitrary web script or HTML by uploading crafted images or PDF files.
Invision Power Services Invision Power Board 2.2
Invision Power Services Invision Power Board 2.1
7.5
CVSSv2
CVE-2006-7071
SQL injection vulnerability in classes/class_session.php in Invision Power Board (IPB) 2.1 up to 2.1.6 allows remote malicious users to execute arbitrary SQL commands via the CLIENT_IP parameter.
Invision Power Services Invision Power Board 2.1.1
Invision Power Services Invision Power Board 2.1.6
Invision Power Services Invision Power Board 2.1.2
Invision Power Services Invision Power Board 2.1.3
Invision Power Services Invision Power Board 2.1.5
Invision Power Services Invision Power Board 2.1.4
2 EDB exploits
9.3
CVSSv2
CVE-2006-7064
Cross-site scripting (XSS) vulnerability in forum/admin.php for Invision Power Board (IPB) 2.1.6 and previous versions allows remote malicious users to inject arbitrary web script or HTML as the administrator via the phpinfo parameter.
Invision Power Services Invision Power Board 2.0 Pf1
Invision Power Services Invision Power Board 2.1 Beta2
Invision Power Services Invision Power Board 1.0
Invision Power Services Invision Power Board 1.1.2
Invision Power Services Invision Power Board 2.0.4
Invision Power Services Invision Power Board 2.1 Rc1
Invision Power Services Invision Power Board 2.1.1
Invision Power Services Invision Power Board 2.1.6
Invision Power Services Invision Power Board 2.1 Alpha2
Invision Power Services Invision Power Board 2.0 Alpha3
Invision Power Services Invision Power Board 1.1.1
Invision Power Services Invision Power Board 2.1.5 2006-03-08
Invision Power Services Invision Power Board 2.1.2
Invision Power Services Invision Power Board 2.1.3
Invision Power Services Invision Power Board 1.0.3
Invision Power Services Invision Power Board 2.0 Pdr3
Invision Power Services Invision Power Board 2.0
Invision Power Services Invision Power Board 2.1 Beta5
Invision Power Services Invision Power Board 1.3 Final
Invision Power Services Invision Power Board 2.1.0
Invision Power Services Invision Power Board 1.2
Invision Power Services Invision Power Board 2.1.5
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »