CVE-2005-3549 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2005-3549

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

Direct code injection vulnerability in Task Manager in Invision Power Board 2.0.1 allows limited remote attackers to execute arbitrary code by referencing the file in Task PHP File To Run field and selecting Run Task Now.

Affected Software

Name	Vendor	Start Version	End Version
Invision_board	Invision_power_services	2.0.1 (including)	2.0.1 (including)

References

http://secunia.com/advisories/17443
http://www.securityfocus.com/archive/1/415798/30/0/threaded
https://exchange.xforce.ibmcloud.com/vulnerabilities/40003