CVE-2004-1531 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2004-1531

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

SQL injection vulnerability in post.php in Invision Power Board (IPB) 2.0.0 through 2.0.2 allows remote attackers to execute arbitrary SQL commands via the qpid parameter.

Affected Software

Name	Vendor	Start Version	End Version
Invision_board	Invision_power_services	2.0 (including)	2.0 (including)
Invision_board	Invision_power_services	2.0.1 (including)	2.0.1 (including)
Invision_board	Invision_power_services	2.0.2 (including)	2.0.2 (including)

References

http://forums.invisionpower.com/index.php?showtopic=154916
http://marc.info/?l=bugtraq\u0026m=110079592702417\u0026w=2
http://marc.info/?l=bugtraq\u0026m=111454805209191\u0026w=2
http://marc.info/?l=bugtraq\u0026m=111462421824202\u0026w=2
http://secunia.com/advisories/13245
http://www.securityfocus.com/bid/11703
https://exchange.xforce.ibmcloud.com/vulnerabilities/18164