SQL injection vulnerability in the IPS Connect service (interface/ipsconnect/ipsconnect.php) in Invision Power Board (aka IPB or IP.Board) 3.3.x and 3.4.x up to and including 3.4.7 prior to 20141114 allows remote malicious users to execute arbitrary SQL commands via the id[] parameter.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
invisioncommunity invision power board 3.3.0 |
||
invisioncommunity invision power board 3.4.0 |
||
invisioncommunity invision power board 3.3.1 |
||
invisioncommunity invision power board 3.3.2 |
||
invisioncommunity invision power board 3.3.3 |
||
invisioncommunity invision power board 3.4.6 |
||
invisionpower invision power board 3.4.7 |
||
invisioncommunity invision power board 3.3.4 |
||
invisioncommunity invision power board 3.4.2 |
||
invisioncommunity invision power board 3.4.4 |
||
invisioncommunity invision power board 3.4.3 |
||
invisioncommunity invision power board 3.4.5 |
||
invisioncommunity invision power board 3.4.1 |
Vulmon