Vulnerability Details CVE-2008-6565
Cross-site scripting (XSS) vulnerability in Invision Power Board 2.3.1 and earlier allows remote attackers to inject arbitrary web script or HTML via an IFRAME tag in the signature.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 36.4%
CVSS Severity
CVSS v2 Score 4.3
References
- http://www.securityfocus.com/archive/1/490115/100/0/threaded
- http://www.securityfocus.com/bid/28466
- https://exchange.xforce.ibmcloud.com/vulnerabilities/41502
- http://www.securityfocus.com/archive/1/490115/100/0/threaded
- http://www.securityfocus.com/bid/28466
- https://exchange.xforce.ibmcloud.com/vulnerabilities/41502
Products affected by CVE-2008-6565
-
cpe:2.3:a:invision_power_services:invision_power_board:*
-
cpe:2.3:a:invision_power_services:invision_power_board:1.0
-
cpe:2.3:a:invision_power_services:invision_power_board:1.0.1
-
cpe:2.3:a:invision_power_services:invision_power_board:1.0.3
-
cpe:2.3:a:invision_power_services:invision_power_board:1.1.1
-
cpe:2.3:a:invision_power_services:invision_power_board:1.1.2
-
cpe:2.3:a:invision_power_services:invision_power_board:1.2
-
cpe:2.3:a:invision_power_services:invision_power_board:1.3
-
cpe:2.3:a:invision_power_services:invision_power_board:1.3.1_final
-
cpe:2.3:a:invision_power_services:invision_power_board:1.3_final
-
cpe:2.3:a:invision_power_services:invision_power_board:2.0
-
cpe:2.3:a:invision_power_services:invision_power_board:2.0.0
-
cpe:2.3:a:invision_power_services:invision_power_board:2.0.1
-
cpe:2.3:a:invision_power_services:invision_power_board:2.0.2
-
cpe:2.3:a:invision_power_services:invision_power_board:2.0.3
-
cpe:2.3:a:invision_power_services:invision_power_board:2.0.4
-
cpe:2.3:a:invision_power_services:invision_power_board:2.0.x
-
cpe:2.3:a:invision_power_services:invision_power_board:2.0_alpha3
-
cpe:2.3:a:invision_power_services:invision_power_board:2.0_pdr3
-
cpe:2.3:a:invision_power_services:invision_power_board:2.0_pf1
-
cpe:2.3:a:invision_power_services:invision_power_board:2.0_pf2
-
cpe:2.3:a:invision_power_services:invision_power_board:2.1
-
cpe:2.3:a:invision_power_services:invision_power_board:2.1.0
-
cpe:2.3:a:invision_power_services:invision_power_board:2.1.1
-
cpe:2.3:a:invision_power_services:invision_power_board:2.1.2
-
cpe:2.3:a:invision_power_services:invision_power_board:2.1.3
-
cpe:2.3:a:invision_power_services:invision_power_board:2.1.4
-
cpe:2.3:a:invision_power_services:invision_power_board:2.1.5
-
cpe:2.3:a:invision_power_services:invision_power_board:2.1.5_2006-03-08
-
cpe:2.3:a:invision_power_services:invision_power_board:2.1.5_2006-04-25
-
cpe:2.3:a:invision_power_services:invision_power_board:2.1.6
-
cpe:2.3:a:invision_power_services:invision_power_board:2.1.7
-
cpe:2.3:a:invision_power_services:invision_power_board:2.1.x
-
cpe:2.3:a:invision_power_services:invision_power_board:2.1_alpha2
-
cpe:2.3:a:invision_power_services:invision_power_board:2.1_beta2
-
cpe:2.3:a:invision_power_services:invision_power_board:2.1_beta3
-
cpe:2.3:a:invision_power_services:invision_power_board:2.1_beta4
-
cpe:2.3:a:invision_power_services:invision_power_board:2.1_beta5
-
cpe:2.3:a:invision_power_services:invision_power_board:2.1_rc1
-
cpe:2.3:a:invision_power_services:invision_power_board:2.2
-
cpe:2.3:a:invision_power_services:invision_power_board:2.2.1
-
cpe:2.3:a:invision_power_services:invision_power_board:2.2.2
-
cpe:2.3:a:invision_power_services:invision_power_board:2.3