Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

CVE
CVEadded 2021/08/17 10:2 p.m.47 views

CVE-2021-39249

Invision Community (IPS Community Suite / IP-Board) prior to 4.6.5.1 is affected by a reflected XSS vulnerability. The issue arises because uploaded file names are predictable via brute-force against PHP mt_rand, enabling an attacker to craft payloads that may be reflected. Affected product: Invi...

6.1CVSS6AI score0.00243EPSS
Exploits1References2Affected Software1
CVE
CVEadded 2021/08/17 10:2 p.m.45 views

CVE-2021-39250

Invision Community (IPS Community Suite/IP-Board) is affected by a stored XSS in versions prior to 4.6.5.1, which can lead to code execution. The vulnerability arises because an uploaded file can be placed inside an IFRAME within user-generated content. For exploitation, an attacker can rely on t...

5.4CVSS5.5AI score0.00455EPSS
Exploits1References2Affected Software1
myhack58
myhack58added 2014/11/12 12:0 a.m.179 views

IP. Board<=3.4.7 SQL injection vulnerability 0day)POC-vulnerability warning-the black bar safety net

Recently IP. Board = 3.4. 7 broke critical 0day vulnerability. IPB Forum is called Invision Power Board(abbreviated IPB or IP. Board, is the world's most famous Forum app by PHP+MySQL architecture. The vulnerability causes., interface/ipsconnect/ipsconnect. php page does not properly handle the i...

0.1AI score
Exploits0
seebug.org
seebug.orgadded 2014/09/18 12:0 a.m.36 views

IP Board 3.x - CSRF Token hjiacking

No description provided by source. Title: IP Board 3.x CSRF - Token hjiacking Date: 03.09.14 Version: = 3.4.6 Vendor: invisionpower.com Author: Piotr S. Video-PoC: https://www.youtube.com/watch?v=G5P21TA4DjY 1 Introduction Latest and propabbly previous IPB verions suffers on vulnerability, which...

7.1AI score
Exploits0
Packet Storm
Packet Stormadded 2014/09/07 12:0 a.m.20 views

IP Board 3.x CSRF Token Theft

Title: IP Board 3.x CSRF - Token hjiacking Date: 03.09.14 Version: = 3.4.6 Vendor: invisionpower.com Author: Piotr S. Video-PoC: https://www.youtube.com/watch?v=G5P21TA4DjY 1 Introduction Latest and propabbly previous IPB verions suffers on vulnerability, which allows attacker to steal CSRF token...

7.4AI score
Exploits0
0day.today
0day.todayadded 2014/09/05 12:0 a.m.23 views

IP Board 3.x CSRF - Token hjiacking Vulnerability

Usage Info Latest and propabbly previous IPB verions suffers on vulnerability, which allows attacker to steal CSRF token of specific user. Function, which allows users to share forum links, does not properly sanitize user input. Mentioned token is attached in request as GET parameter, so it's abl...

6.8AI score
Exploits0
Metasploit
Metasploitadded 2014/08/21 1:18 a.m.12 views

IP Board Login Auxiliary Module

This module attempts to validate user provided credentials against an IP Board web application. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'metasploit/framework/loginscanner/ipboard' require...

7.3AI score
Exploits0
0day.today
0day.todayadded 2012/11/01 12:0 a.m.30 views

Invision Power Board <= 3.3.4 "unserialize()" PHP Code Execution

Exploit for php platform in category web applications ?php / ---------------------------------------------------------------- Invision Power Board = 3.3.4 "unserialize" PHP Code Execution ---------------------------------------------------------------- author..............: Egidio Romano aka EgiX...

7.1AI score0.83034EPSS
Exploits15
Rows per page
Query Builder