Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
invision power services vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-3477
Multiple interpretation error in the image upload handling code in Invision Gallery 2.0.3 allows remote malicious users to conduct cross-site scripting (XSS) attacks via HTML or script in an image whose type does not match its extension, which is rendered by Internet Explorer due...
Invision Power Services Invision Gallery 2.0.3
NA
CVE-2005-3548
Directory traversal vulnerability in Task Manager in Invision Power Board (IP.Board) 2.0.1 allows limited remote malicious users to include files via a .. (dot dot) in the "Task PHP File To Run" field.
Invision Power Services Invision Board 2.0.1
NA
CVE-2004-0355
Invision Power Board 1.3 Final allows remote malicious users to gain sensitive information by selecting a file for "Personal Photo" that is not an image file, which displays the installation path in an error message.
Invision Power Services Invision Board 1.3
NA
CVE-2005-3547
Cross-site scripting (XSS) vulnerability in Invision Power Board 2.1 allows remote malicious users to inject arbitrary web script or HTML via the (1) adsess, (2) name, and (3) description parameters in admin.php, and the (4) ACP Notes, (5) Member Name, (6) Password, (7) Email Add...
Invision Power Services Invision Board 2.1
1 EDB exploit
NA
CVE-2005-3549
Direct code injection vulnerability in Task Manager in Invision Power Board 2.0.1 allows limited remote malicious users to execute arbitrary code by referencing the file in "Task PHP File To Run" field and selecting "Run Task Now".
Invision Power Services Invision Board 2.0.1
NA
CVE-2004-1835
Multiple SQL injection vulnerabilities in index.php in Invision Gallery 1.0.1 allow remote malicious users to execute arbitrary SQL via the (1) img, (2) cat, (3) sort_key, (4) order_key, (5) user, or (6) album parameters.
Invision Power Services Invision Gallery 1.0.1
2 EDB exploits
NA
CVE-2005-3395
SQL injection vulnerability in Invision Gallery 2.0.3 allows remote malicious users to execute arbitrary SQL commands via the st parameter.
Invision Power Services Invision Gallery 2.0.3
1 EDB exploit
NA
CVE-2006-6369
SQL injection vulnerability in lib/entry_reply_entry.php in Invision Community Blog Mod 1.2.4 allows remote malicious users to execute arbitrary SQL commands via the eid parameter, when accessed through the "Preview message" functionality.
Invision Power Services Invision Community Blog 1.2.4
1 EDB exploit
NA
CVE-2005-0217
SQL injection vulnerability in index.php in Invision Community Blog allows remote malicious users to execute arbitrary SQL commands via the eid parameter.
Invision Power Services Invision Community Blog 1.0
NA
CVE-2007-5688
Multiple SQL injection vulnerabilities in directory.php in the Multi-Forums (aka Multi Host Forum Pro) module 1.3.3, for phpBB and Invision Power Board (IPB or IP.Board), allow remote malicious users to execute arbitrary SQL commands via the (1) go and (2) cat parameters.
Sebflipper Multi-forums Module 1.3.3
Invision Power Services Invision Power Board
Phpbb Phpbb
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
NEXT »