CVE-2006-1267
Invision Power Board 2.1.4 is affected by a session-hijacking vulnerability. An attacker can obtain the session ID from the s parameter and replay it in a separate request to potentially gain administrative privileges. The CVE-2006-1267 details indicate remote exploitation via network access with...