CVSS: 7.5EPSS: 3%CPEs: 1EXPL: 0CVE-2005-0217
https://notcve.org/view.php?id=CVE-2005-0217
SQL injection vulnerability in index.php in Invision Community Blog allows remote attackers to execute arbitrary SQL commands via the eid parameter. • http://marc.info/?l=bugtraq&m=110538277223800&w=2 http://secunia.com/advisories/13783 http://securitytracker.com/id?1012831 http://www.osvdb.org/12817 http://www.securityfocus.com/bid/12205 https://exchange.xforce.ibmcloud.com/vulnerabilities/18815 •
CVSS: 4.3EPSS: 1%CPEs: 1EXPL: 0CVE-2004-1578
https://notcve.org/view.php?id=CVE-2004-1578
Cross-site scripting (XSS) vulnerability in index.php in Invision Power Board 2.0.0 allows remote attackers to execute arbitrary web script or HTML via the Referer field in the HTTP header. • http://marc.info/?l=bugtraq&m=109701091207517&w=2 http://secunia.com/advisories/12740 http://www.securityfocus.com/bid/11332 https://exchange.xforce.ibmcloud.com/vulnerabilities/17604 •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 1CVE-2004-2279
https://notcve.org/view.php?id=CVE-2004-2279
Cross-site scripting (XSS) vulnerability in Invision Power Board 1.3 Final allows remote attackers to execute arbitrary script as other users via the pop parameter in a chat action to index.php. • http://archives.neohapsis.com/archives/bugtraq/2004-03/0082.html https://exchange.xforce.ibmcloud.com/vulnerabilities/15448 •
CVSS: 7.5EPSS: 1%CPEs: 3EXPL: 3CVE-2004-1836 – Invision Power Top Site List 1.0/1.1 - 'id' SQL Injection
https://notcve.org/view.php?id=CVE-2004-1836
SQL injection vulnerability in index.php in Invision Power Top Site List 1.1 RC 2 and earlier allows remote attackers to execute arbitrary SQL via the id parameter of the comments action. • https://www.exploit-db.com/exploits/23868 http://marc.info/?l=bugtraq&m=107997924117652&w=2 http://secunia.com/advisories/11187 http://securitytracker.com/id?1009511 http://www.securityfocus.com/bid/9945 https://exchange.xforce.ibmcloud.com/vulnerabilities/15568 •
CVSS: 7.5EPSS: 1%CPEs: 3EXPL: 2CVE-2004-1531 – Invision Power Board 2.0.0 < 2.0.2 - SQL Injection
https://notcve.org/view.php?id=CVE-2004-1531
SQL injection vulnerability in post.php in Invision Power Board (IPB) 2.0.0 through 2.0.2 allows remote attackers to execute arbitrary SQL commands via the qpid parameter. • https://www.exploit-db.com/exploits/648 http://forums.invisionpower.com/index.php?showtopic=154916 http://marc.info/?l=bugtraq&m=110079592702417&w=2 http://marc.info/?l=bugtraq&m=111454805209191&w=2 http://marc.info/?l=bugtraq&m=111462421824202&w=2 http://secunia.com/advisories/13245 http://www.securityfocus.com/bid/11703 https://exchange.xforce.ibmcloud.com/vulnerabilities/18164 •