CVE-2006-5203

Loading...

General

Score:5.1/10.0
Severity:Medium
Category:N/A

Impact Metrics

Confidentiality:Partial
Integrity:Partial
Availability:Partial

Exploitability Metrics

Access Vector:Network
Access Complexity:High
Authentication:None

Published on 10/10/06 - Updated on 20/07/17

Description

Invision Power Board (IPB) 2.1.7 and earlier allows remote restricted administrators to inject arbitrary web script or HTML, or execute arbitrary SQL commands, via a forum description that contains a crafted image with PHP code, which is executed when the user visits the "Manage Forums" link in the Admin control panel.

Category:

There is insufficient information about the issue to classify it; details are unknown or unspecified.

Security Notices

US National Vulnerability DatabaseCVE-2006-5203

Exploits

No exploits available for this CVE in our database.

Relative technologies

VendorProduct
invision_power_servicesinvision_power_board

Share this vulnerability with:

Twitter Facebook LinkedIn Mail