CVSS: 4.3EPSS: 0%CPEs: 15EXPL: 1CVE-2005-0886 – Invision Power Board 1.x/2.0 - HTML Injection
https://notcve.org/view.php?id=CVE-2005-0886
Cross-site scripting (XSS) vulnerability in Invision Power Board 2.0.2 and earlier allows remote attackers to inject arbitrary web script or HTML via an HTTP POST request. • https://www.exploit-db.com/exploits/25267 http://www.securityfocus.com/bid/12888 •
CVSS: 7.5EPSS: 1%CPEs: 3EXPL: 2CVE-2004-1531 – Invision Power Board 2.0.0 < 2.0.2 - SQL Injection
https://notcve.org/view.php?id=CVE-2004-1531
SQL injection vulnerability in post.php in Invision Power Board (IPB) 2.0.0 through 2.0.2 allows remote attackers to execute arbitrary SQL commands via the qpid parameter. • https://www.exploit-db.com/exploits/648 http://forums.invisionpower.com/index.php?showtopic=154916 http://marc.info/?l=bugtraq&m=110079592702417&w=2 http://marc.info/?l=bugtraq&m=111454805209191&w=2 http://marc.info/?l=bugtraq&m=111462421824202&w=2 http://secunia.com/advisories/13245 http://www.securityfocus.com/bid/11703 https://exchange.xforce.ibmcloud.com/vulnerabilities/18164 •
CVSS: 10.0EPSS: 0%CPEs: 8EXPL: 0CVE-2004-0338
https://notcve.org/view.php?id=CVE-2004-0338
SQL injection vulnerability in search.php for Invision Board Forum allows remote attackers to execute arbitrary SQL queries via the st parameter. • http://marc.info/?l=bugtraq&m=107799527428834&w=2 http://www.securityfocus.com/bid/9766 https://exchange.xforce.ibmcloud.com/vulnerabilities/15343 •