Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
invisioncommunity invision power board vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2012-2226
Invision Power Board prior to 3.3.1 fails to sanitize user-supplied input which could allow remote malicious users to obtain sensitive information or execute arbitrary code by uploading a malicious file.
Invisioncommunity Invision Power Board
1 EDB exploit
4.3
CVSSv2
CVE-2019-8278
Stored XSS in Invision Power Board versions 3.3.1 - 3.4.8 leads to Remote Code Execution.
Invisioncommunity Invision Power Board
6.8
CVSSv2
CVE-2017-8899
Invision Power Services (IPS) Community Suite 4.1.19.2 and previous versions has a composite of Stored XSS and Information Disclosure issues in the attachments feature found in User CP. This can be triggered by any Invision Power Board user and can be used to gain access to moder...
Invisioncommunity Invision Power Board
7.5
CVSSv2
CVE-2013-3725
Invision Power Board (IPB) up to and including 3.x allows admin account takeover leading to code execution.
Invisioncommunity Invision Power Board
4.3
CVSSv2
CVE-2017-8897
Invision Power Services (IPS) Community Suite 4.1.19.2 and previous versions has pre-auth reflected XSS in the IPS UTF8 Converter v1.1.18: admin/convertutf8/index.php?controller= is the attack vector. This UTF8 Converter vulnerability can easily be used to make a malicious announ...
Invisioncommunity Invision Power Board
7.5
CVSSv2
CVE-2017-8898
Invision Power Services (IPS) Community Suite 4.1.19.2 and previous versions has stored XSS in the Announcements, allowing privilege escalation from an Invision Power Board moderator to an admin. An attack uses the announce_content parameter in an index.php?/modcp/announcements/&...
Invisioncommunity Invision Power Board
4.3
CVSSv2
CVE-2010-3424
Cross-site scripting (XSS) vulnerability in admin/sources/classes/bbcode/custom/defaults.php in Invision Power Board (IP.Board) 3.1.2 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Invisioncommunity Invision Power Board 3.1.2
4.3
CVSSv2
CVE-2009-5159
Invision Power Board (aka IPB or IP.Board) 2.x up to and including 3.0.4, when Internet Explorer 5 is used, allows XSS via a .txt attachment.
Invisioncommunity Invision Power Board
Microsoft Internet Explorer 5
6.8
CVSSv2
CVE-2016-6174
applications/core/modules/front/system/content.php in Invision Power Services IPS Community Suite (aka Invision Power Board, IPB, or Power Board) prior to 4.1.13, when used with PHP prior to 5.4.24 or 5.5.x prior to 5.5.8, allows remote malicious users to execute arbitrary code v...
Invisioncommunity Invision Power Board
Php Php 5.5.0
Php Php 5.5.1
Php Php 5.5.5
Php Php 5.5.7
Php Php 5.5.6
Php Php 5.5.3
Php Php 5.5.4
Php Php
Php Php 5.5.2
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5834
CVE-2024-30100
CVE-2024-4577
physical
dos
CVE-2024-30099
CVE-2024-27801
CVE-2024-32146
logic flaw
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2