Filtered by vendor Invision Power Services Subscriptions
Filtered by product Invision Power Board Subscriptions
Total 42 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2004-1578 1 Invision Power Services 1 Invision Power Board 2024-11-21 N/A
Cross-site scripting (XSS) vulnerability in index.php in Invision Power Board 2.0.0 allows remote attackers to execute arbitrary web script or HTML via the Referer field in the HTTP header.
CVE-2003-1385 1 Invision Power Services 1 Invision Power Board 2024-11-21 N/A
ipchat.php in Invision Power Board 1.1.1 allows remote attackers to execute arbitrary PHP code, if register_globals is enabled, by modifying the root_path parameter to reference a URL on a remote web server that contains the code.