Invision Community Blog Security Vulnerabilities and Issues — Invision Community Blog CVE List

Lucene search

Invision Power ServicesInvision Community Blog

2 matches found

CVE•added 2006/12/07 5:28 p.m.•27 views

CVE-2006-6369

SQL injection vulnerability in lib/entry_reply_entry.php in Invision Community Blog Mod 1.2.4 allows remote attackers to execute arbitrary SQL commands via the eid parameter, when accessed through the "Preview message" functionality.

7.5CVSS8.8AI score0.00255EPSS

CVE•added 2006/05/09 10:2 a.m.•24 views

CVE-2006-2251

SQL injection vulnerability in the do_mmod function in mod.php in Invision Community Blog (ICB) 1.1.2 final through 1.2 allows remote attackers with moderator privileges to execute arbitrary SQL commands via the selectedbids parameter.

6.4CVSS8.4AI score0.00503EPSS