Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
invision power services vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv2
CVE-2007-3219
Unspecified vulnerability in sources/action_public/xmlout.php in Invision Power Board (IPB or IP.Board) 2.2.0 up to and including 2.2.2 allows remote malicious users to modify another user's profile data, such as an AIM screen name or Yahoo! identity.
Invision Power Services Invision Power Board 2.2
Invision Power Services Invision Power Board 2.2.1
Invision Power Services Invision Power Board 2.2.2
7.5
CVSSv2
CVE-2004-1531
SQL injection vulnerability in post.php in Invision Power Board (IPB) 2.0.0 up to and including 2.0.2 allows remote malicious users to execute arbitrary SQL commands via the qpid parameter.
Invision Power Services Invision Board 2.0.1
Invision Power Services Invision Board 2.0.2
Invision Power Services Invision Board 2.0
1 EDB exploit
5.8
CVSSv2
CVE-2006-1287
Cross-site scripting (XSS) vulnerability in Invision Power Board (IPB) 2.0.4 and 2.1.4 prior to 20060130 allows remote malicious users to steal cookies and probably conduct other activities when the victim is using Internet Explorer.
Invision Power Services Invision Power Board 2.0.4
Invision Power Services Invision Power Board 2.1.4
7.5
CVSSv2
CVE-2006-1288
Multiple SQL injection vulnerabilities in Invision Power Board (IPB) 2.0.4 and 2.1.4 prior to 20060105 allow remote malicious users to execute arbitrary SQL commands via cookies, related to (1) arrays of id/stamp pairs and (2) the keys in arrays of key/value pairs in ipsclass.php...
Invision Power Services Invision Power Board 2.0.4
Invision Power Services Invision Power Board 2.1.4
5.8
CVSSv2
CVE-2007-2349
Cross-site scripting (XSS) vulnerability in Invision Power Board (IP.Board) 2.1.x and 2.2.x allows remote malicious users to inject arbitrary web script or HTML by uploading crafted images or PDF files.
Invision Power Services Invision Power Board 2.1
Invision Power Services Invision Power Board 2.2
7.5
CVSSv2
CVE-2008-4171
SQL injection vulnerability in xmlout.php in Invision Power Board (IP.Board or IPB) 2.2.x and 2.3.x allows remote malicious users to execute arbitrary SQL commands via the name parameter.
Invision Power Services Invision Power Board 2.2
Invision Power Services Invision Power Board 2.3
6.4
CVSSv2
CVE-2006-2251
SQL injection vulnerability in the do_mmod function in mod.php in Invision Community Blog (ICB) 1.1.2 final up to and including 1.2 allows remote attackers with moderator privileges to execute arbitrary SQL commands via the selectedbids parameter.
Invision Power Services Invision Community Blog 1.0
Invision Power Services Invision Community Blog 1.1
Invision Power Services Invision Community Blog 1.1.2 Final
Invision Power Services Invision Community Blog 1.2
7.5
CVSSv2
CVE-2004-1836
SQL injection vulnerability in index.php in Invision Power Top Site List 1.1 RC 2 and previous versions allows remote malicious users to execute arbitrary SQL via the id parameter of the comments action.
Invision Power Services Invision Power Top Site List 1.1 Rc2
Invision Power Services Invision Power Top Site List 1.0
Invision Power Services Invision Power Top Site List 1.1
1 EDB exploit
6.4
CVSSv2
CVE-2006-2060
Directory traversal vulnerability in action_admin/paysubscriptions.php in Invision Power Board (IPB) 2.1.x and 2.0.x prior to 20060425 allows remote authenticated administrators to include and execute arbitrary local PHP files via a .. (dot dot) in the name parameter, preceded by...
Invision Power Services Invision Power Board 2.0.x
Invision Power Services Invision Power Board 2.1.x
7.5
CVSSv2
CVE-2005-1948
Multiple SQL injection vulnerabilities in Invision Gallery prior to 1.3.1 allow remote malicious users to execute arbitrary SQL commands via (1) the comment parameter in an editcomment action or (2) the rating parameter when voting on a photo.
Invision Power Services Invision Gallery 1.0.1
Invision Power Services Invision Gallery 1.3
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581
reflected XSS
CVE-2024-26925
CVE-2024-27956
LFI
CVE-2024-3607
CVE-2024-3107
CVE-2024-3295
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »