Invision Board@2.1 Security Vulnerabilities and Issues — Invision Board@2.1 CVE List

Lucene search

Invision Power ServicesInvision Board2.1

2 matches found

cve•added 2005/11/16 7:42 a.m.•35 views

CVE-2005-3547

Cross-site scripting (XSS) vulnerability in Invision Power Board 2.1 allows remote attackers to inject arbitrary web script or HTML via the (1) adsess, (2) name, and (3) description parameters in admin.php, and the (4) ACP Notes, (5) Member Name, (6) Password, (7) Email Address, (8) Components, and...

4.3CVSS6AI score0.01467EPSS

cve•added 2006/04/26 8:6 p.m.•34 views

CVE-2006-2061

SQL injection vulnerability in lib/func_taskmanager.php in Invision Power Board (IPB) 2.1.x and 2.0.x before 20060425 allows remote attackers to execute arbitrary SQL commands via the ck parameter, which can inject at most 32 characters.

5CVSS8.4AI score0.01635EPSS