5.1

CVE-2006-5203

EPSS 0.31%
Veröffentlicht 10.10.2006 04:06:00
Zuletzt bearbeitet 09.04.2025 00:30:58
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

Invision Power Board (IPB) 2.1.7 and earlier allows remote restricted administrators to inject arbitrary web script or HTML, or execute arbitrary SQL commands, via a forum description that contains a crafted image with PHP code, which is executed when the user visits the "Manage Forums" link in the Admin control panel.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 5

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Invision Power Services ≫ Invision Power Board Version <= 2.1.7

Invision Power Services ≫ Invision Power Board Version1.0

Invision Power Services ≫ Invision Power Board Version1.0.1

Invision Power Services ≫ Invision Power Board Version1.0.3

Invision Power Services ≫ Invision Power Board Version1.1.1

Invision Power Services ≫ Invision Power Board Version1.1.2

Invision Power Services ≫ Invision Power Board Version1.2

Invision Power Services ≫ Invision Power Board Version1.3

Invision Power Services ≫ Invision Power Board Version1.3.1_final

Invision Power Services ≫ Invision Power Board Version1.3_final

Invision Power Services ≫ Invision Power Board Version2.0

Invision Power Services ≫ Invision Power Board Version2.0.0

Invision Power Services ≫ Invision Power Board Version2.0.1

Invision Power Services ≫ Invision Power Board Version2.0.2

Invision Power Services ≫ Invision Power Board Version2.0.3

Invision Power Services ≫ Invision Power Board Version2.0.4

Invision Power Services ≫ Invision Power Board Version2.0.x

Invision Power Services ≫ Invision Power Board Version2.0_alpha3

Invision Power Services ≫ Invision Power Board Version2.0_pdr3

Invision Power Services ≫ Invision Power Board Version2.0_pf1

Invision Power Services ≫ Invision Power Board Version2.0_pf2

Invision Power Services ≫ Invision Power Board Version2.1

Invision Power Services ≫ Invision Power Board Version2.1.0

Invision Power Services ≫ Invision Power Board Version2.1.1

Invision Power Services ≫ Invision Power Board Version2.1.2

Invision Power Services ≫ Invision Power Board Version2.1.3

Invision Power Services ≫ Invision Power Board Version2.1.4

Invision Power Services ≫ Invision Power Board Version2.1.5

Invision Power Services ≫ Invision Power Board Version2.1.5_2006-03-08

Invision Power Services ≫ Invision Power Board Version2.1.6

Invision Power Services ≫ Invision Power Board Version2.1_alpha2

Invision Power Services ≫ Invision Power Board Version2.1_beta2

Invision Power Services ≫ Invision Power Board Version2.1_beta3

Invision Power Services ≫ Invision Power Board Version2.1_beta4

Invision Power Services ≫ Invision Power Board Version2.1_beta5

Invision Power Services ≫ Invision Power Board Version2.1_rc1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.31%	0.533

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5.1	4.9	6.4	AV:N/AC:H/Au:N/C:P/I:P/A:P

http://www.securityfocus.com/archive/1/447710/100/0/threaded

https://exchange.xforce.ibmcloud.com/vulnerabilities/29352

https://nvd.nist.gov/vuln/detail/CVE-2006-5203

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2006-5203

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2006-5203

EUVD