Invision Power Services (IPS) Community Suite 4.1.19.2 and earlier has stored XSS in the Announcements, allowing privilege escalation from an Invision Power Board moderator to an admin. An attack uses the announce_content parameter in an index.php?/modcp/announcements/&action=create request. This is related to the "<> Source" option.
References
Link | Resource |
---|---|
http://zeroday.insecurity.zone/exploits/ipb_owned.txt | Exploit Third Party Advisory |
https://twitter.com/insecurity/status/862154908895780864 | Exploit Third Party Advisory |
https://twitter.com/sxcurity/status/862284967715381248 | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2022-10-03T16:23:07
Updated: 2022-10-03T16:23:07
Reserved: 2022-10-03T00:00:00
Link: CVE-2017-8898
JSON object: View
NVD Information
Status : Analyzed
Published: 2017-05-11T17:29:00.207
Modified: 2020-06-03T14:55:02.463
Link: CVE-2017-8898
JSON object: View
Redhat Information
No data.
CWE