Invision Power Services: >> Invision Community Blog >> 1.1.2_final Security Vulnerabilities
SQL injection vulnerability in the do_mmod function in mod.php in Invision Community Blog (ICB) 1.1.2 final through 1.2 allows remote attackers with moderator privileges to execute arbitrary SQL commands via the selectedbids parameter.
CVSS Score
6.4
EPSS Score
0.005
Published
2006-05-09