• info
• discussion
• exploit
• solution
• references

Invision Power Board CVE-2006-1287 Cross-Site Scripting Vulnerability

Invision Power Board is prone to a cross-site scripting vulnerability. Cross-site scripting (XSS) vulnerability in Invision Power Board (IPB) 2.0.4 and 2.1.4 before 20060130 allows remote attackers to steal cookies and probably conduct other activities when the victim is using Internet Explorer.