Invision Power Board CVE-2007-2349 Cross-Site Scripting Vulnerability

Invision Power Board CVE-2007-2349 Cross-Site Scripting Vulnerability

Invision Power Board is prone to a cross-site scripting vulnerability. Cross-site scripting (XSS) vulnerability in Invision Power Board (IP.Board) 2.1.x and 2.2.x allows remote attackers to inject arbitrary web script or HTML by uploading crafted images or PDF files.