• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Invision Power Board 'name' parameter SQL Injection Vulnerability

Bugtraq ID:	31288
Class:	Input Validation Error
CVE:
Remote:	Yes
Local:	No
Published:	Sep 21 2008 12:00AM
Updated:	Sep 22 2008 10:59PM
Credit:	Janek Vind
Vulnerable:	Invision Power Services Invision Power Board 2.3.5 Invision Power Services Invision Power Board 2.3.4 Invision Power Services Invision Power Board 2.3.1 Invision Power Services Invision Power Board 2.2.2 Invision Power Services Invision Power Board 2.2.1 Invision Power Services Invision Power Board 2.2 Invision Power Services Invision Power Board 2.1.6 Invision Power Services Invision Power Board 2.1.5.2006.04.25 Invision Power Services Invision Power Board 2.1.5 .2006.03.08 Invision Power Services Invision Gallery 2.1 Invision Power Services Invision Gallery 2.0.7 Invision Power Services Invision Gallery 2.0.6 Invision Power Services Invision Gallery 2.0.3
Not Vulnerable: