Cross-site scripting (XSS) vulnerability in (1) search.php and (2) topics.php for Invision Power Board (IPB) 2.0.3 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the highlite parameter.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
invision power services invision board 1.0 |
||
invision power services invision board 1.0.1 |
||
invision power services invision power board 2.0.3 |
||
invision power services invision board 1.2 |
||
invision power services invision board 1.3 |
||
invision power services invision board 2.0_alpha_3 |
||
invision power services invision board 2.0_pdr3 |
||
invision power services invision board 1.1.1 |
||
invision power services invision board 1.1.2 |
Vulmon