Cross-site scripting (XSS) vulnerability in Invision Power Board 2.0.2 and earlier allows remote attackers to inject arbitrary web script or HTML via an HTTP POST request.
Software | From | Fixed in |
---|---|---|
invision_power_services / invision_board | 1.0 | 1.0.x |
invision_power_services / invision_board | 1.0.1 | 1.0.1.x |
invision_power_services / invision_board | 1.1.1 | 1.1.1.x |
invision_power_services / invision_board | 1.1.2 | 1.1.2.x |
invision_power_services / invision_board | 1.2 | 1.2.x |
invision_power_services / invision_board | 1.3 | 1.3.x |
invision_power_services / invision_board | 1.3_final | 1.3_final.x |
invision_power_services / invision_board | 1.3.1_final | 1.3.1_final.x |
invision_power_services / invision_board | 2.0 | 2.0.x |
invision_power_services / invision_board | 2.0_alpha_3 | 2.0_alpha_3.x |
invision_power_services / invision_board | 2.0_pdr3 | 2.0_pdr3.x |
invision_power_services / invision_board | 2.0_pf1 | 2.0_pf1.x |
invision_power_services / invision_board | 2.0_pf2 | 2.0_pf2.x |
invision_power_services / invision_board | 2.0.1 | 2.0.1.x |
invision_power_services / invision_board | 2.0.2 | 2.0.2.x |