Cross-site scripting (XSS) vulnerability in Invision Power IP.Board (aka IPB or Power Board) 3.4.x up to and including 3.4.6 allows remote malicious users to inject arbitrary web script or HTML via the HTTP Referer header to admin/install/index.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
invisioncommunity invision power board 3.4.0 |
||
invisioncommunity invision power board 3.4.5 |
||
invisioncommunity invision power board 3.4.6 |
||
invisioncommunity invision power board 3.4.1 |
||
invisioncommunity invision power board 3.4.2 |
||
invisioncommunity invision power board 3.4.3 |
||
invisioncommunity invision power board 3.4.4 |