Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
invision power board vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-3974
Multiple SQL injection vulnerabilities in Invision Power Board (IPB or IP.Board) 3.0.0, 3.0.1, and 3.0.2 allow remote malicious users to execute arbitrary SQL commands via the (1) search_term parameter to admin/applications/core/modules_public/search/search.php and (2) aid parame...
Invisioncommunity Invision Power Board 3.0.2
Invisioncommunity Invision Power Board 3.0.0
Invisioncommunity Invision Power Board 3.0.1
NA
CVE-2008-6565
Cross-site scripting (XSS) vulnerability in Invision Power Board 2.3.1 and previous versions allows remote malicious users to inject arbitrary web script or HTML via an IFRAME tag in the signature.
Invision Power Services Invision Power Board 2.3
Invision Power Services Invision Power Board 1.0.3
Invision Power Services Invision Power Board 1.2
Invision Power Services Invision Power Board 2.0.3
Invision Power Services Invision Power Board 2.0.0
Invision Power Services Invision Power Board 2.1.5 2006-03-08
Invision Power Services Invision Power Board 2.1.5
Invision Power Services Invision Power Board 2.1 Beta3
Invision Power Services Invision Power Board 2.1 Beta2
Invision Power Services Invision Power Board 2.2.2
Invision Power Services Invision Power Board 2.2.1
Invision Power Services Invision Power Board
Invision Power Services Invision Power Board 1.3 Final
Invision Power Services Invision Power Board 1.0.1
Invision Power Services Invision Power Board 2.0 Pf1
Invision Power Services Invision Power Board 2.0 Alpha3
Invision Power Services Invision Power Board 2.1.2
Invision Power Services Invision Power Board 2.0 Pf2
Invision Power Services Invision Power Board 2.1
Invision Power Services Invision Power Board 2.1.5 2006-04-25
Invision Power Services Invision Power Board 2.1.x
Invision Power Services Invision Power Board 2.1.7
1 EDB exploit
NA
CVE-2008-4171
SQL injection vulnerability in xmlout.php in Invision Power Board (IP.Board or IPB) 2.2.x and 2.3.x allows remote malicious users to execute arbitrary SQL commands via the name parameter.
Invision Power Services Invision Power Board 2.2
Invision Power Services Invision Power Board 2.3
NA
CVE-2008-1359
Cross-site scripting (XSS) vulnerability in Invision Power Board (IPB or IP.Board) 2.3.4 prior to 2008-03-13 allows remote malicious users to inject arbitrary web script or HTML via nested BBCodes, a different vector than CVE-2008-0913.
Invision Power Services Invision Power Board
NA
CVE-2008-0913
Cross-site scripting (XSS) vulnerability in Invision Power Board (IPB or IP.Board) 2.3.4 allows remote malicious users to inject arbitrary web script or HTML via crafted BBCodes in an unspecified context.
Invision Power Services Invision Power Board 2.3.4
NA
CVE-2007-5688
Multiple SQL injection vulnerabilities in directory.php in the Multi-Forums (aka Multi Host Forum Pro) module 1.3.3, for phpBB and Invision Power Board (IPB or IP.Board), allow remote malicious users to execute arbitrary SQL commands via the (1) go and (2) cat parameters.
Sebflipper Multi-forums Module 1.3.3
Invision Power Services Invision Power Board
Phpbb Phpbb
1 EDB exploit
NA
CVE-2007-4912
Cross-site scripting (XSS) vulnerability in ips_kernel/class_ajax.php in Invision Power Board (IPB or IP.Board) 2.3.1 up to 20070912 allows remote malicious users to inject arbitrary web script or HTML into user profile fields via unspecified vectors related to character sets oth...
Invision Power Services Invision Power Board 2.1.5 2006-04-25
Invision Power Services Invision Power Board 2.1.6
Invision Power Services Invision Power Board 2.2
Invision Power Services Invision Power Board 2.2.1
Invision Power Services Invision Power Board 2.1.5 2006-03-08
Invision Power Services Invision Power Board 2.2.2
NA
CVE-2007-4913
ips_kernel/class_upload.php in Invision Power Board (IPB or IP.Board) 2.3.1 up to 20070912 allows remote malicious users to upload arbitrary script files with crafted image filenames to uploads/, where they are saved with a .txt extension and are not executable. NOTE: there are l...
Invision Power Services Invision Power Board 2.1.5 2006-04-25
Invision Power Services Invision Power Board 2.2
Invision Power Services Invision Power Board 2.2.1
Invision Power Services Invision Power Board 2.2.2
Invision Power Services Invision Power Board
Invision Power Services Invision Power Board 2.1.5 2006-03-08
Invision Power Services Invision Power Board 2.1.6
NA
CVE-2007-4914
Unspecified vulnerability in the subscriptions manager in Invision Power Board (IPB or IP.Board) 2.3.1 prior to 20070912 allows remote authenticated users to change the member ID and reduce the privilege level of arbitrary users via a crafted payment form, related to (1) class_gw...
Invision Power Services Invision Power Board 2.1.5 2006-03-08
Invision Power Services Invision Power Board 2.1.5 2006-04-25
Invision Power Services Invision Power Board 2.1.6
Invision Power Services Invision Power Board 2.2.2
Invision Power Services Invision Power Board
Invision Power Services Invision Power Board 2.2
Invision Power Services Invision Power Board 2.2.1
NA
CVE-2007-4487
Cross-site scripting (XSS) vulnerability in D22-Shoutbox for Invision Power Board (IPB or IP.Board) allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Dscripting.com D22-shoutbox
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »