Page 4 of 18 results (0.005 seconds)

CVSS: 6.8EPSS: 15%CPEs: 3EXPL: 0

CVE-2006-1369

https://notcve.org/view.php?id=CVE-2006-1369

Cross-site scripting (XSS) vulnerability in Invision Power Board (IPB) 2.1.5 and earlier before 20060308 allows remote attackers to inject arbitrary web script or HTML via a Private Message (PM) in certain circumstances. • http://forums.invisionpower.com/index.php?showtopic=209178 http://secunia.com/advisories/19299 http://www.securityfocus.com/bid/17187 http://www.vupen.com/english/advisories/2006/1044 https://exchange.xforce.ibmcloud.com/vulnerabilities/25384 •

CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 2

CVE-2006-1076 – Invision Power Board 2.1.5 - showtopic SQL Injection

https://notcve.org/view.php?id=CVE-2006-1076

SQL injection vulnerability in index.php, possibly during a showtopic operation, in Invision Power Board (IPB) 2.1.5 allows remote attackers to execute arbitrary SQL commands via the st parameter. • https://www.exploit-db.com/exploits/27361 http://www.securityfocus.com/archive/1/426875/100/0/threaded http://www.securityfocus.com/archive/1/430357/100/0/threaded http://www.securityfocus.com/bid/16971 https://exchange.xforce.ibmcloud.com/vulnerabilities/25254 •

CVSS: 5.0EPSS: 1%CPEs: 10EXPL: 2

CVE-2005-2542 – Invision Power Board (IP.Board) 1.0.3 - Attached File Cross-Site Scripting

https://notcve.org/view.php?id=CVE-2005-2542

Invision Power Board (IPB) 1.0.3 allows remote attackers to inject arbitrary web script or HTML via an attachment, which is automatically downloaded and processed as HTML. • https://www.exploit-db.com/exploits/26104 http://marc.info/?l=bugtraq&m=112327712614854&w=2 http://secunia.com/advisories/16348 http://www.securityfocus.com/bid/14492 •