Invision Power Board@1.3 final Security Vulnerabilities and Issues — Invision Power Board@1.3 final CVE List

Lucene search

Invision Power ServicesInvision Power Board1.3 final

2 matches found

CVE•added 2005/03/30 5:0 a.m.•40 views

CVE-2005-0477

Cross-site scripting (XSS) vulnerability in the SML code for Invision Power Board 1.3.1 FINAL allows remote attackers to inject arbitrary web script via (1) a signature file or (2) a message post containing an IMG tag within a COLOR tag whose style is set to background:url.

4.3CVSS6AI score0.00424EPSS

CVE•added 2005/07/19 4:0 a.m.•38 views

CVE-2004-2279

Cross-site scripting (XSS) vulnerability in Invision Power Board 1.3 Final allows remote attackers to execute arbitrary script as other users via the pop parameter in a chat action to index.php.

4.3CVSS6.3AI score0.00442EPSS