exploits , vulnerabilities , articles , Retired: Invision Power Board Showtopic SQL Injection Vulnerability

Title	Retired: Invision Power Board Showtopic SQL Injection Vulnerability
Published	2006-03-06-12:00AM
Updated	2006-03-17-10:20PM
Class	Input Validation Error
CVE
Remote	Yes
Local	No
Credit	Mr.SNAKE is credited with the discovery of this vulnerability.
Vulnerable	Invision Power Services Invision Board 2.1.5 Invision Power Services Invision Board 2.1
Not Vulnerable
Code	This issue can be exploited through a web client. The following proof-of-concept URI is available: http://www.example.com/index.php?showtopic=208510&pid=1366158&st=-1[sql]&#entry1366158
TXT

Vulnerabilities - newest 10 RSS | More

• 2009-11-06 Google Chrome prior to 3.0.195.32 Multiple Security Vulnerabilities
• 2009-11-05 Asterisk SIP Response Username Enumeration Remote Information Disclosure Vulnerability
• 2009-11-05 Pablo Software Solutions Baby Web Server Multiple Request Remote Denial of Service Vulnerability
• 2009-11-05 Linux Kernel r128 Driver CCE Initialization NULL Pointer Dereference Denial of Service Vulnerability
• 2009-11-05 Prototype JavaScript Framework Cross-Site Ajax Request Vulnerability
• 2009-11-05 Drupal Organic Groups Vocabulary Group Title HTML Injection Vulnerability
• 2009-11-05 IBM PowerHA Cluster Management Unauthorized Access Vulnerability
• 2009-11-05 HP Power Manager Unspecified Remote Code Execution Vulnerability
• 2009-11-05 Multiple Vendor TLS Protocol Session Renegotiation Security Vulnerability
• 2009-11-04 Roundcube Webmail index.PHP Cross-Site Scripting Vulnerability

• Vulnerabilities
• Exploits
• News
• Articles

Copyright 2007, SecurityDot
Mon, 09 Nov 2009 10:59:25 +0000