CVE-2008-0913

Description

Cross-site scripting (XSS) vulnerability in Invision Power Board (IPB or IP.Board) 2.3.4 allows remote attackers to inject arbitrary web script or HTML via crafted BBCodes in an unspecified context.

Affected Software
References

Software	From	Fixed in
invision_power_services / invision_power_board	2.3.4	2.3.4.x

http://forums.invisionpower.com/index.php?showtopic=269961
http://secunia.com/advisories/29055

Severity: Low

CVE: CVE-2008-0913
Published: Feb 23, 2008
Updated: Apr 13, 2023
Exploit:

Severity: Low
Score: 4.3
AV:N/AC:M/Au:N/C:N/I:P/A:N

CWE-79

A7 - Cross-Site Scripting (XSS)

CVE-2008-0913

Description

Details

CVSS v2

CWEs

OWASP TOP 10