Invision Board Security Vulnerabilities and Issues — Invision Board CVE List

Lucene search

Invision Power ServicesInvision Board

3 matches found

CVE•added 2004/11/23 5:0 a.m.•123 views

CVE-2004-0359

Cross-site scripting (XSS) vulnerability in index.php for Invision Power Board 1.3 final allows remote attackers to execute arbitrary script as other users via the (1) c, (2) f, (3) showtopic, (4) showuser, or (5) username parameters.

6.8CVSS6.6AI score0.01858EPSS

CVE•added 2004/11/23 5:0 a.m.•36 views

CVE-2004-0338

SQL injection vulnerability in search.php for Invision Board Forum allows remote attackers to execute arbitrary SQL queries via the st parameter.

10CVSS8.6AI score0.00423EPSS

CVE•added 2004/11/23 5:0 a.m.•33 views

CVE-2004-0355

Invision Power Board 1.3 Final allows remote attackers to gain sensitive information by selecting a file for "Personal Photo" that is not an image file, which displays the installation path in an error message.

5CVSS6.9AI score0.00435EPSS