CVE Vulnerabilities

CVE-2006-5203

Published: Oct 10, 2006 | Modified: Oct 17, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5.1 MEDIUM
AV:N/AC:H/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

Invision Power Board (IPB) 2.1.7 and earlier allows remote restricted administrators to inject arbitrary web script or HTML, or execute arbitrary SQL commands, via a forum description that contains a crafted image with PHP code, which is executed when the user visits the Manage Forums link in the Admin control panel.

Affected Software

Name Vendor Start Version End Version
Invision_power_board Invision_power_services 1.0 1.0
Invision_power_board Invision_power_services 1.0.1 1.0.1
Invision_power_board Invision_power_services 1.0.3 1.0.3
Invision_power_board Invision_power_services 1.1.1 1.1.1
Invision_power_board Invision_power_services 1.1.2 1.1.2
Invision_power_board Invision_power_services 1.2 1.2
Invision_power_board Invision_power_services 1.3 1.3
Invision_power_board Invision_power_services 1.3.1_final 1.3.1_final
Invision_power_board Invision_power_services 1.3_final 1.3_final
Invision_power_board Invision_power_services 2.0 2.0
Invision_power_board Invision_power_services 2.0.0 2.0.0
Invision_power_board Invision_power_services 2.0.1 2.0.1
Invision_power_board Invision_power_services 2.0.2 2.0.2
Invision_power_board Invision_power_services 2.0.3 2.0.3
Invision_power_board Invision_power_services 2.0.4 2.0.4
Invision_power_board Invision_power_services 2.0.x 2.0.x
Invision_power_board Invision_power_services 2.0_alpha3 2.0_alpha3
Invision_power_board Invision_power_services 2.0_pdr3 2.0_pdr3
Invision_power_board Invision_power_services 2.0_pf1 2.0_pf1
Invision_power_board Invision_power_services 2.0_pf2 2.0_pf2
Invision_power_board Invision_power_services 2.1 2.1
Invision_power_board Invision_power_services 2.1.0 2.1.0
Invision_power_board Invision_power_services 2.1.1 2.1.1
Invision_power_board Invision_power_services 2.1.2 2.1.2
Invision_power_board Invision_power_services 2.1.3 2.1.3
Invision_power_board Invision_power_services 2.1.4 2.1.4
Invision_power_board Invision_power_services 2.1.5 2.1.5
Invision_power_board Invision_power_services 2.1.5_2006-03-08 2.1.5_2006-03-08
Invision_power_board Invision_power_services 2.1.6 2.1.6
Invision_power_board Invision_power_services * 2.1.7
Invision_power_board Invision_power_services 2.1_alpha2 2.1_alpha2
Invision_power_board Invision_power_services 2.1_beta2 2.1_beta2
Invision_power_board Invision_power_services 2.1_beta3 2.1_beta3
Invision_power_board Invision_power_services 2.1_beta4 2.1_beta4
Invision_power_board Invision_power_services 2.1_beta5 2.1_beta5
Invision_power_board Invision_power_services 2.1_rc1 2.1_rc1

References