Filtered by vendor Invisioncommunity
Subscriptions
Total
25 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2014-3149 | 2 Invisioncommunity, Invisionpower | 2 Invision Power Board, Ip.nexus | 2020-06-03 | N/A |
Cross-site scripting (XSS) vulnerability in Invision Power IP.Board (aka IPB or Power Board) 3.3.x and 3.4.x through 3.4.6, as downloaded before 20140424, or IP.Nexus 1.5.x through 1.5.9, as downloaded before 20140424, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | ||||
CVE-2009-5159 | 2 Invisioncommunity, Microsoft | 2 Invision Power Board, Internet Explorer | 2020-03-18 | 6.1 Medium |
Invision Power Board (aka IPB or IP.Board) 2.x through 3.0.4, when Internet Explorer 5 is used, allows XSS via a .txt attachment. | ||||
CVE-2013-3725 | 1 Invisioncommunity | 1 Invision Power Board | 2020-02-25 | 9.8 Critical |
Invision Power Board (IPB) through 3.x allows admin account takeover leading to code execution. | ||||
CVE-2012-2226 | 1 Invisioncommunity | 1 Invision Power Board | 2020-01-14 | 9.8 Critical |
Invision Power Board before 3.3.1 fails to sanitize user-supplied input which could allow remote attackers to obtain sensitive information or execute arbitrary code by uploading a malicious file. | ||||
CVE-2019-8278 | 1 Invisioncommunity | 1 Invision Power Board | 2019-03-07 | N/A |
Stored XSS in Invision Power Board versions 3.3.1 - 3.4.8 leads to Remote Code Execution. |