MidnightBSD

Advisories for invision_power_services

CVE-2002-1149 MEDIUM

The installation procedure for Invision Board suggests that users install the phpinfo.php program under the web root, which leaks sensitive information such as absolute pathnames, OS information, and PHP settings.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
invision_power_services invision_board 1.0.1
invision_power_services invision_board 1.0
CVE-2003-1385 MEDIUM

ipchat.php in Invision Power Board 1.1.1 allows remote attackers to execute arbitrary PHP code, if register_globals is enabled, by modifying the root_path parameter to reference a URL on a remote web server that contains the code.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-94,

Products Affected

Vendor Product Version
invision_power_services invision_power_board 1.1.1
CVE-2003-1454 MEDIUM

Invision Power Services Invision Board 1.0 through 1.1.1, when a forum is password protected, stores the administrator password in a cookie in plaintext, which could allow remote attackers to gain access.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
invision_power_services invision_board 1.1.1
invision_power_services invision_board 1.0.1
invision_power_services invision_board 1.0
CVE-2004-0338 HIGH

SQL injection vulnerability in search.php for Invision Board Forum allows remote attackers to execute arbitrary SQL queries via the st parameter.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
invision_power_services invision_board 1.2
invision_power_services invision_board 1.1.1
invision_power_services invision_board 1.3
invision_power_services invision_board 1.1.2
invision_power_services invision_board 1.0.1
invision_power_services invision_board 2.0_pdr3
invision_power_services invision_board 1.0
invision_power_services invision_board 2.0_alpha_3
CVE-2004-0355 MEDIUM

Invision Power Board 1.3 Final allows remote attackers to gain sensitive information by selecting a file for "Personal Photo" that is not an image file, which displays the installation path in an error message.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
invision_power_services invision_board 1.3
CVE-2004-0359 MEDIUM

Cross-site scripting (XSS) vulnerability in index.php for Invision Power Board 1.3 final allows remote attackers to execute arbitrary script as other users via the (1) c, (2) f, (3) showtopic, (4) showuser, or (5) username parameters.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
invision_power_services invision_board 1.3_final
invision_power_services invision_board 1.3.1_final
CVE-2004-1531 HIGH

SQL injection vulnerability in post.php in Invision Power Board (IPB) 2.0.0 through 2.0.2 allows remote attackers to execute arbitrary SQL commands via the qpid parameter.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
invision_power_services invision_board 2.0
invision_power_services invision_board 2.0.2
invision_power_services invision_board 2.0.1
CVE-2004-1578 MEDIUM

Cross-site scripting (XSS) vulnerability in index.php in Invision Power Board 2.0.0 allows remote attackers to execute arbitrary web script or HTML via the Referer field in the HTTP header.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
invision_power_services invision_power_board 2.0.0
CVE-2004-1785 HIGH

SQL injection vulnerability in calendar.php for Invision Power Board 1.3 allows remote attackers to execute arbitrary SQL commands via the m parameter, which sets the $this->chosen_month variable.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
invision_power_services invision_board 1.2
invision_power_services invision_board 1.1.1
invision_power_services invision_board 1.3
invision_power_services invision_board 1.1.2
invision_power_services invision_board 1.0.1
invision_power_services invision_board 1.0
CVE-2004-1835 HIGH

Multiple SQL injection vulnerabilities in index.php in Invision Gallery 1.0.1 allow remote attackers to execute arbitrary SQL via the (1) img, (2) cat, (3) sort_key, (4) order_key, (5) user, or (6) album parameters.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
invision_power_services invision_gallery 1.0.1
CVE-2004-1836 HIGH

SQL injection vulnerability in index.php in Invision Power Top Site List 1.1 RC 2 and earlier allows remote attackers to execute arbitrary SQL via the id parameter of the comments action.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
invision_power_services invision_power_top_site_list 1.0
invision_power_services invision_power_top_site_list 1.1_rc2
invision_power_services invision_power_top_site_list 1.1
CVE-2004-2279 MEDIUM

Cross-site scripting (XSS) vulnerability in Invision Power Board 1.3 Final allows remote attackers to execute arbitrary script as other users via the pop parameter in a chat action to index.php.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
invision_power_services invision_power_board 1.3_final
CVE-2005-0217 HIGH

SQL injection vulnerability in index.php in Invision Community Blog allows remote attackers to execute arbitrary SQL commands via the eid parameter.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
invision_power_services invision_community_blog 1.0
CVE-2005-0477 MEDIUM

Cross-site scripting (XSS) vulnerability in the SML code for Invision Power Board 1.3.1 FINAL allows remote attackers to inject arbitrary web script via (1) a signature file or (2) a message post containing an IMG tag within a COLOR tag whose style is set to background:url.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
invision_power_services invision_power_board 1.0
invision_power_services invision_power_board 1.3.1_final
invision_power_services invision_power_board 1.3
invision_power_services invision_power_board 1.1.2
invision_power_services invision_power_board 1.3_final
invision_power_services invision_power_board 1.0.1
invision_power_services invision_power_board 1.1.1
invision_power_services invision_power_board 1.2
CVE-2005-0886 MEDIUM

Cross-site scripting (XSS) vulnerability in Invision Power Board 2.0.2 and earlier allows remote attackers to inject arbitrary web script or HTML via an HTTP POST request.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
invision_power_services invision_board 1.1.1
invision_power_services invision_board 2.0
invision_power_services invision_board 2.0_pf2
invision_power_services invision_board 1.3_final
invision_power_services invision_board 1.3.1_final
invision_power_services invision_board 2.0_pdr3
invision_power_services invision_board 2.0_pf1
invision_power_services invision_board 2.0_alpha_3
invision_power_services invision_board 2.0.1
invision_power_services invision_board 1.2
invision_power_services invision_board 1.3
invision_power_services invision_board 1.1.2
invision_power_services invision_board 1.0.1
invision_power_services invision_board 2.0.2
invision_power_services invision_board 1.0
CVE-2005-1070 HIGH

SQL injection vulnerability in index.php in Invision Power Board 1.3.1 Final and earlier allows remote attackers to execute arbitrary SQL commands via the st parameter.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
invision_power_services invision_board 1.2
invision_power_services invision_board 1.1.1
invision_power_services invision_board 1.3
invision_power_services invision_board 1.1.2
invision_power_services invision_board 1.0.1
invision_power_services invision_board 1.3_final
invision_power_services invision_board 1.3.1_final
invision_power_services invision_board 1.0
CVE-2005-1597 MEDIUM

Cross-site scripting (XSS) vulnerability in (1) search.php and (2) topics.php for Invision Power Board (IPB) 2.0.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the highlite parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
invision_power_services invision_board 1.2
invision_power_services invision_board 1.1.1
invision_power_services invision_board 1.3
invision_power_services invision_board 1.1.2
invision_power_services invision_power_board 2.0.3
invision_power_services invision_board 1.0.1
invision_power_services invision_board 2.0_pdr3
invision_power_services invision_board 1.0
invision_power_services invision_board 2.0_alpha_3
CVE-2005-1598 HIGH

SQL injection vulnerability in Invision Power Board (IPB) 2.0.3 and earlier allows remote attackers to execute arbitrary SQL commands via a crafted cookie password hash (pass_hash) that modifies the internal $pid variable.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
invision_power_services invision_board 1.2
invision_power_services invision_board 1.1.1
invision_power_services invision_board 1.3
invision_power_services invision_board 1.1.2
invision_power_services invision_power_board 2.0.3
invision_power_services invision_board 1.0.1
invision_power_services invision_board 2.0_pdr3
invision_power_services invision_board 1.0
invision_power_services invision_board 2.0_alpha_3
CVE-2005-1816 MEDIUM

Invision Power Board (IPB) 1.0 through 2.0.4 allows non-root admins to add themselves or other users to the root admin group via the "Move users in this group to" screen.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
invision_power_services invision_board 1.1.1
invision_power_services invision_board 2.0.4
invision_power_services invision_board 2.0
invision_power_services invision_board 2.0_pf2
invision_power_services invision_board 1.3_final
invision_power_services invision_board 1.3.1_final
invision_power_services invision_board 2.0_pdr3
invision_power_services invision_board 2.0_pf1
invision_power_services invision_board 2.0_alpha_3
invision_power_services invision_board 2.0.1
invision_power_services invision_board 1.2
invision_power_services invision_board 1.3
invision_power_services invision_board 1.1.2
invision_power_services invision_board 2.0.3
invision_power_services invision_board 1.0.1
invision_power_services invision_board 2.0.2
invision_power_services invision_board 1.0
CVE-2005-1817 MEDIUM

Invision Power Board (IPB) 1.0 through 1.3 allows remote attackers to edit arbitrary forum posts via a direct request to index.php with modified parameters.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
invision_power_services invision_board 1.2
invision_power_services invision_board 1.1.1
invision_power_services invision_board 1.3
invision_power_services invision_board 1.1.2
invision_power_services invision_board 1.0.1
invision_power_services invision_board 1.3_final
invision_power_services invision_board 1.0
CVE-2005-1945 MEDIUM

Cross-site scripting (XSS) vulnerability in the convert_highlite_words function in Invision Blog before 1.1.2 Final allows remote attackers to inject arbitrary web script or HTML via double hex encoded highlight data.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
invision_power_services invision_community_blog 1.0
invision_power_services invision_community_blog 1.1
CVE-2005-1946 HIGH

Multiple SQL injection vulnerabilities in Invision Blog before 1.1.2 Final allow remote attackers to execute arbitrary SQL commands via the (1) eid parameter to an editentry, replyentry, or editcomment action, or (2) the mid parameter to an aboutme action.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
invision_power_services invision_community_blog 1.0
invision_power_services invision_community_blog 1.1
CVE-2005-1948 HIGH

Multiple SQL injection vulnerabilities in Invision Gallery before 1.3.1 allow remote attackers to execute arbitrary SQL commands via (1) the comment parameter in an editcomment action or (2) the rating parameter when voting on a photo.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
invision_power_services invision_gallery 1.3
invision_power_services invision_gallery 1.0.1
CVE-2005-2542 MEDIUM

Invision Power Board (IPB) 1.0.3 allows remote attackers to inject arbitrary web script or HTML via an attachment, which is automatically downloaded and processed as HTML.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
invision_power_services invision_board 2.1_alpha2
invision_power_services invision_board 2.0.4
invision_power_services invision_board 2.0
invision_power_services invision_board 2.0_pf2
invision_power_services invision_board 2.0.3
invision_power_services invision_board 2.0_pdr3
invision_power_services invision_board 2.0.2
invision_power_services invision_board 2.0_pf1
invision_power_services invision_board 2.0_alpha_3
invision_power_services invision_board 2.0.1
CVE-2005-3395 HIGH

SQL injection vulnerability in Invision Gallery 2.0.3 allows remote attackers to execute arbitrary SQL commands via the st parameter.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
invision_power_services invision_gallery 2.0.3
CVE-2005-3477 MEDIUM

Multiple interpretation error in the image upload handling code in Invision Gallery 2.0.3 allows remote attackers to conduct cross-site scripting (XSS) attacks via HTML or script in an image whose type does not match its extension, which is rendered by Internet Explorer due to CVE-2005-3312. NOTE: it could be argued that this vulnerability is due to a design flaw in Internet Explorer and the proper fix should be in that browser; if so, then this should not be treated as a vulnerability in Invision Gallery.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
invision_power_services invision_gallery 2.0.3
CVE-2005-3547 MEDIUM

Cross-site scripting (XSS) vulnerability in Invision Power Board 2.1 allows remote attackers to inject arbitrary web script or HTML via the (1) adsess, (2) name, and (3) description parameters in admin.php, and the (4) ACP Notes, (5) Member Name, (6) Password, (7) Email Address, (8) Components, and multiple other input fields.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
invision_power_services invision_board 2.1
CVE-2005-3548 MEDIUM

Directory traversal vulnerability in Task Manager in Invision Power Board (IP.Board) 2.0.1 allows limited remote attackers to include files via a .. (dot dot) in the "Task PHP File To Run" field.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-22,

Products Affected

Vendor Product Version
invision_power_services invision_board 2.0.1
CVE-2005-3549 MEDIUM

Direct code injection vulnerability in Task Manager in Invision Power Board 2.0.1 allows limited remote attackers to execute arbitrary code by referencing the file in "Task PHP File To Run" field and selecting "Run Task Now".

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
invision_power_services invision_board 2.0.1
CVE-2006-0888 LOW

index.php in Invision Power Board (IPB) 2.0.1, with Code Confirmation disabled, allows remote attackers to cause an unspecified denial of service by registering a large number of users.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
invision_power_services invision_power_board 2.0.1
CVE-2006-0909 MEDIUM

Invision Power Board (IPB) 2.1.4 and earlier allows remote attackers to view sensitive information via a direct request to multiple PHP scripts that include the full path in error messages, including (1) PEAR/Text/Diff/Renderer/inline.php, (2) PEAR/Text/Diff/Renderer/unified.php, (3) PEAR/Text/Diff3.php, (4) class_db.php, (5) class_db_mysql.php, and (6) class_xml.php in the ips_kernel/ directory; (7) mysql_admin_queries.php, (8) mysql_extra_queries.php, (9) mysql_queries.php, and (10) mysql_subsm_queries.php in the sources/sql directory; (11) sources/acp_loaders/acp_pages_components.php; (12) sources/action_admin/member.php and (13) sources/action_admin/paysubscriptions.php; (14) login.php, (15) messenger.php, (16) moderate.php, (17) paysubscriptions.php, (18) register.php, (19) search.php, (20) topics.php, (21) and usercp.php in the sources/action_public directory; (22) bbcode/class_bbcode.php, (23) bbcode/class_bbcode_legacy.php, (24) editor/class_editor_rte.php, (25) editor/class_editor_std.php, (26) post/class_post.php, (27) post/class_post_edit.php, (28) post/class_post_new.php, (29) and post/class_post_reply.php in the sources/classes directory; (30) sources/components_acp/registration_DEPR.php; (31) sources/handlers/han_paysubscriptions.php; (32) func_usercp.php; (33) search_mysql_ftext.php, and (34) search_mysql_man.php in the sources/lib/ directory; and (35) convert/auth.php.bak, (36) external/auth.php, and (37) ldap/auth.php in the sources/loginauth directory.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
invision_power_services invision_power_board 2.0.2
invision_power_services invision_power_board 2.1.3
invision_power_services invision_power_board 2.1_beta2
invision_power_services invision_power_board 2.1_beta3
invision_power_services invision_power_board 2.1_beta5
invision_power_services invision_power_board 2.1.0
invision_power_services invision_power_board 2.1_beta4
invision_power_services invision_power_board 2.1.4
invision_power_services invision_power_board 2.1.1
invision_power_services invision_power_board 2.0.1
invision_power_services invision_power_board 2.1.2
invision_power_services invision_power_board 2.0.3
invision_power_services invision_power_board 2.1_rc1
invision_power_services invision_power_board 2.0.4
invision_power_services invision_power_board 2.0.0
CVE-2006-0910 MEDIUM

Invision Power Board (IPB) 2.1.4 and earlier allows remote attackers to list directory contents via a direct request to multiple directories, including (1) sources/loginauth/convert/, (2) sources/portal_plugins/, (3) cache/skin_cache/cacheid_2/, (4) ips_kernel/PEAR/, (5) ips_kernel/PEAR/Text/, (6) ips_kernel/PEAR/Text/Diff/, (7) ips_kernel/PEAR/Text/Diff/Renderer/, (8) style_images/1/folder_rte_files/, (9) style_images/1/folder_js_skin/, (10) style_images/1/folder_rte_images/, and (11) upgrade/ and its subdirectories.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
invision_power_services invision_power_board 2.0.2
invision_power_services invision_power_board 2.1.3
invision_power_services invision_power_board 2.1_beta2
invision_power_services invision_power_board 2.1_beta3
invision_power_services invision_power_board 2.1_beta5
invision_power_services invision_power_board 2.1.0
invision_power_services invision_power_board 2.1_beta4
invision_power_services invision_power_board 2.1.4
invision_power_services invision_power_board 2.1.1
invision_power_services invision_power_board 2.0.1
invision_power_services invision_power_board 2.1.2
invision_power_services invision_power_board 2.0.3
invision_power_services invision_power_board 2.1_rc1
invision_power_services invision_power_board 2.0.4
invision_power_services invision_power_board 2.0.0
CVE-2006-1076 HIGH

SQL injection vulnerability in index.php, possibly during a showtopic operation, in Invision Power Board (IPB) 2.1.5 allows remote attackers to execute arbitrary SQL commands via the st parameter.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
invision_power_services invision_power_board 2.1.5
CVE-2006-1267 MEDIUM

Invision Power Board 2.1.4 allows remote attackers to hijack sessions and possibly gain administrative privileges by obtaining the session ID from the s parameter, then replaying it in another request.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
invision_power_services invision_power_board 2.1.4
CVE-2006-1287 MEDIUM

Cross-site scripting (XSS) vulnerability in Invision Power Board (IPB) 2.0.4 and 2.1.4 before 20060130 allows remote attackers to steal cookies and probably conduct other activities when the victim is using Internet Explorer.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
invision_power_services invision_power_board 2.1.4
invision_power_services invision_power_board 2.0.4
CVE-2006-1288 HIGH

Multiple SQL injection vulnerabilities in Invision Power Board (IPB) 2.0.4 and 2.1.4 before 20060105 allow remote attackers to execute arbitrary SQL commands via cookies, related to (1) arrays of id/stamp pairs and (2) the keys in arrays of key/value pairs in ipsclass.php; (3) the topics variable in usercp.php; and the topicsread cookie in (4) topics.php, (5) search.php, and (6) forums.php.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
invision_power_services invision_power_board 2.1.4
invision_power_services invision_power_board 2.0.4
CVE-2006-1326 MEDIUM

Multiple cross-site scripting (XSS) vulnerabilities in Invision Power Board 2.0.4 allow remote attackers to inject arbitrary web script or HTML via the (1) result_type, (2) search_in, (3) nav, (4) forums, and (5) s parameters in the Search action to index.php; (6) st parameter to index.php with showtopics set to 1; (7) m, (8) y, and (9) d parameters in a calendar action; (10) t parameter in a Print action; (11) MID parameter in a Mail action; (12) HID parameter in a Help action; (13) active parameter in a search action; (14) sort_order, (15) max_results, or (16) sort_key parameter in a Members action.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
invision_power_services invision_power_board 2.0.4
CVE-2006-1369 MEDIUM

Cross-site scripting (XSS) vulnerability in Invision Power Board (IPB) 2.1.5 and earlier before 20060308 allows remote attackers to inject arbitrary web script or HTML via a Private Message (PM) in certain circumstances.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
invision_power_services invision_power_board 2.1
invision_power_services invision_power_board 2.1_alpha2
invision_power_services invision_power_board 2.1.5
CVE-2006-2059 MEDIUM

action_public/search.php in Invision Power Board (IPB) 2.1.x and 2.0.x before 20060425 allows remote attackers to execute arbitrary PHP code via a search with a crafted value of the lastdate parameter, which alters the behavior of a regular expression to add a "#e" (execute) modifier.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
invision_power_services invision_power_board 2.1.5_2006-03-08
CVE-2006-2060 MEDIUM

Directory traversal vulnerability in action_admin/paysubscriptions.php in Invision Power Board (IPB) 2.1.x and 2.0.x before 20060425 allows remote authenticated administrators to include and execute arbitrary local PHP files via a .. (dot dot) in the name parameter, preceded by enough backspace (%08) characters to erase the initial static portion of a filename.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
invision_power_services invision_power_board 2.0.x
invision_power_services invision_power_board 2.1.x
CVE-2006-2061 MEDIUM

SQL injection vulnerability in lib/func_taskmanager.php in Invision Power Board (IPB) 2.1.x and 2.0.x before 20060425 allows remote attackers to execute arbitrary SQL commands via the ck parameter, which can inject at most 32 characters.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
invision_power_services invision_board 2.0.4
invision_power_services invision_board 2.0
invision_power_services invision_board 2.0_pf2
invision_power_services invision_board 2.0_pdr3
invision_power_services invision_board 2.0_pf1
invision_power_services invision_board 2.0_alpha_3
invision_power_services invision_board 2.0.1
invision_power_services invision_board 2.1
invision_power_services invision_board 2.1_alpha2
invision_power_services invision_board 2.0.3
invision_power_services invision_power_board 2.1.5_2006-03-08
invision_power_services invision_board 2.0.2
invision_power_services invision_board 2.1.5
CVE-2006-2097 HIGH

SQL injection vulnerability in func_msg.php in Invision Power Board (IPB) 2.1.4 allows remote attackers to execute arbitrary SQL commands via the from_contact field in a private message (PM).

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
invision_power_services invision_power_board 2.0.2
invision_power_services invision_power_board 2.1.3
invision_power_services invision_power_board 1.3.1_final
invision_power_services invision_power_board 2.1_beta2
invision_power_services invision_power_board 2.1
invision_power_services invision_power_board 1.1.2
invision_power_services invision_power_board 2.1_alpha2
invision_power_services invision_power_board *
invision_power_services invision_power_board 1.2
invision_power_services invision_power_board 2.1_beta5
invision_power_services invision_power_board 2.1.0
invision_power_services invision_power_board 2.0.3
invision_power_services invision_power_board 2.0.x
invision_power_services invision_power_board 1.1.1
invision_power_services invision_power_board 2.0.4
invision_power_services invision_power_board 2.0.0
invision_power_services invision_power_board 1.0
invision_power_services invision_power_board 1.3
invision_power_services invision_power_board 2.1_beta3
invision_power_services invision_power_board 1.3_final
invision_power_services invision_power_board 1.0.1
invision_power_services invision_power_board 2.1_beta4
invision_power_services invision_power_board 2.1.1
invision_power_services invision_power_board 2.0.1
invision_power_services invision_power_board 2.1.2
invision_power_services invision_power_board 2.1_rc1
CVE-2006-2202 MEDIUM

SQL injection vulnerability in post.php in Invision Gallery 2.0.6 allows remote attackers to execute arbitrary SQL commands via the album parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
invision_power_services invision_gallery 2.0.6
CVE-2006-2204 MEDIUM

SQL injection vulnerability in the topic deletion functionality (post_delete function in func_mod.php) for Invision Power Board 2.1.5 allows remote authenticated moderators to execute arbitrary SQL commands via the selectedpids parameter, which bypasses an integer value check when the $id variable is an array.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
invision_power_services invision_power_board 2.0.2
invision_power_services invision_power_board 2.1.3
invision_power_services invision_power_board 2.1_beta2
invision_power_services invision_power_board 2.1
invision_power_services invision_power_board 2.1_alpha2
invision_power_services invision_power_board 2.1_beta3
invision_power_services invision_power_board 2.1_beta5
invision_power_services invision_power_board 2.1.0
invision_power_services invision_power_board 2.1_beta4
invision_power_services invision_power_board 2.1.4
invision_power_services invision_power_board 2.1.1
invision_power_services invision_power_board 2.0.1
invision_power_services invision_power_board 2.1.2
invision_power_services invision_power_board 2.0.3
invision_power_services invision_power_board 2.1.5
invision_power_services invision_power_board 2.1_rc1
invision_power_services invision_power_board 2.0.x
invision_power_services invision_power_board 2.0.4
invision_power_services invision_power_board 2.0.0
CVE-2006-2217 HIGH

SQL injection vulnerability in index.php in Invision Power Board allows remote attackers to execute arbitrary SQL commands via the pid parameter in a reputation action. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
invision_power_services invision_power_board 2.0.2
invision_power_services invision_power_board 2.1.4
invision_power_services invision_power_board 2.0.1
invision_power_services invision_power_board 2.1
invision_power_services invision_power_board 2.0.3
invision_power_services invision_power_board 2.1_alpha2
invision_power_services invision_power_board 2.1.6
invision_power_services invision_power_board 2.1.5
invision_power_services invision_power_board 2.0.4
invision_power_services invision_power_board 2.0.0
CVE-2006-2251 MEDIUM

SQL injection vulnerability in the do_mmod function in mod.php in Invision Community Blog (ICB) 1.1.2 final through 1.2 allows remote attackers with moderator privileges to execute arbitrary SQL commands via the selectedbids parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
invision_power_services invision_community_blog 1.2
invision_power_services invision_community_blog 1.0
invision_power_services invision_community_blog 1.1.2_final
invision_power_services invision_community_blog 1.1
CVE-2006-2498 MEDIUM

Invision Power Board (IPB) before 2.1.6 allows remote attackers to execute arbitrary PHP script via attack vectors involving (1) the post_icon variable in classes/post/class_post.php and (2) the df value in action_public/moderate.php.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
invision_power_services invision_power_board 2.0.2
invision_power_services invision_power_board 2.1.3
invision_power_services invision_power_board 2.1_beta2
invision_power_services invision_power_board 2.1
invision_power_services invision_power_board 2.1_alpha2
invision_power_services invision_power_board 2.1_beta3
invision_power_services invision_power_board 2.1_beta5
invision_power_services invision_power_board 2.1.0
invision_power_services invision_power_board 2.1_beta4
invision_power_services invision_power_board 2.1.4
invision_power_services invision_power_board 2.1.1
invision_power_services invision_power_board 2.0.1
invision_power_services invision_power_board 2.1.2
invision_power_services invision_power_board 2.0.3
invision_power_services invision_power_board 2.1.6
invision_power_services invision_power_board 2.1.5
invision_power_services invision_power_board 2.1_rc1
invision_power_services invision_power_board 2.0.4
invision_power_services invision_power_board 2.0.0
CVE-2006-3197 MEDIUM

Cross-site scripting (XSS) vulnerability in Invision Power Board (IPB) 2.1.6 and earlier allows remote attackers to inject arbitrary web script or HTML via a POST that contains hexadecimal-encoded HTML.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
invision_power_services invision_power_board 2.1.3
invision_power_services invision_power_board 2.1_beta2
invision_power_services invision_power_board 2.1
invision_power_services invision_power_board 2.1_alpha2
invision_power_services invision_power_board 2.1_beta3
invision_power_services invision_power_board 2.1_beta5
invision_power_services invision_power_board 2.1.0
invision_power_services invision_power_board 2.1_beta4
invision_power_services invision_power_board 2.1.4
invision_power_services invision_power_board 2.1.1
invision_power_services invision_power_board 2.1.2
invision_power_services invision_power_board 2.1.6
invision_power_services invision_power_board 2.1.5
invision_power_services invision_power_board 2.1_rc1
CVE-2006-3543 HIGH

Multiple SQL injection vulnerabilities in Invision Power Board (IPB) 1.x and 2.x allow remote attackers to execute arbitrary SQL commands via the (1) idcat and (2) code parameters in a ketqua action in index.php; the id parameter in a (3) Attach and (4) ref action in index.php; the CODE parameter in a (5) Profile, (6) Login, and (7) Help action in index.php; and the (8) member_id parameter in coins_list.php. NOTE: the developer has disputed this issue, stating that the "CODE attribute is never present in an SQL query" and the "'ketqua' [action] and file 'coin_list.php' are not standard IPB 2.x features". It is unknown whether these vectors are associated with an independent module or modification of IPB

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
invision_power_services invision_power_board 2.0.2
invision_power_services invision_power_board 1.0
invision_power_services invision_power_board 1.3.1_final
invision_power_services invision_power_board 2.0_pf1
invision_power_services invision_power_board 2.1
invision_power_services invision_power_board 1.3
invision_power_services invision_power_board 1.1.2
invision_power_services invision_power_board 2.0_pdr3
invision_power_services invision_power_board 2.1_alpha2
invision_power_services invision_power_board 1.3_final
invision_power_services invision_power_board 2.0
invision_power_services invision_power_board 1.0.1
invision_power_services invision_power_board 1.2
invision_power_services invision_power_board 1.0.3
invision_power_services invision_power_board 2.1.4
invision_power_services invision_power_board 2.0.1
invision_power_services invision_power_board 2.0.3
invision_power_services invision_power_board 2.1.6
invision_power_services invision_power_board 2.1.5
invision_power_services invision_power_board 2.0_pf2
invision_power_services invision_power_board 1.1.1
invision_power_services invision_power_board 2.0.4
invision_power_services invision_power_board 2.0_alpha3
CVE-2006-3544 HIGH

Multiple SQL injection vulnerabilities in Invision Power Board (IPB) 1.3 Final allow remote attackers to execute arbitrary SQL commands via the CODE parameter in a (1) Stats, (2) Mail, and (3) Reg action in index.php. NOTE: the developer has disputed this issue, stating that "At no point does the CODE parameter touch the database. The CODE parameter is used in a SWITCH statement to determine which function to run.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
invision_power_services invision_board 1.3_final
invision_power_services invision_board 1.3.1_final