Invision Power Board Unspecified XSS

2006-03-06T08:47:38
ID OSVDB:23709
Type osvdb
Reporter OSVDB
Modified 2006-03-06T08:47:38

Description

Technical Description

This vulnerability only affects victims using Microsoft Internet Explorer.

Solution Description

Currently, there are no known workarounds or upgrades to correct this issue. However, Invision Power Board has released a patch (2.0.4 or 2.1.4 dated 01-05-06) to address this vulnerability.

References:

Vendor URL: http://www.invisionpower.com/ Vendor Specific News/Changelog Entry: http://forums.invisionpower.com/index.php?showtopic=206790 Secunia Advisory ID:19141 Related OSVDB ID: 23710 FrSIRT Advisory: ADV-2006-0861 CVE-2006-1287