SQL injection vulnerability in Invision Power Board (IPB) 2.0.3 and previous versions allows remote malicious users to execute arbitrary SQL commands via a crafted cookie password hash (pass_hash) that modifies the internal $pid variable.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
invision power services invision board 2.0_alpha_3 |
||
invision power services invision board 2.0_pdr3 |
||
invision power services invision power board 2.0.3 |
||
invision power services invision board 1.1.1 |
||
invision power services invision board 1.1.2 |
||
invision power services invision board 1.2 |
||
invision power services invision board 1.3 |
||
invision power services invision board 1.0 |
||
invision power services invision board 1.0.1 |
Vulmon