Invision Power Board Multiple Cross-Site Scripting Vulnerabilities

Invision Power Board Multiple Cross-Site Scripting Vulnerabilities

No exploit is required.

Example URI have been provided:

http://www.example.com/2p1p0b3/upload/admin.php?adsess=[xss]&act=login&code=login-complete

http://www.example.com/2p1p0b3/upload/admin.php?adsess=[id]&section=content&act=forum&code=new&name=[xss]

http://www.example.com/2p1p0b3/upload/admin.php?name=[xss]&description=[xss]