CGI abuses : Invision Power Board ST Parameter SQL Injection

Anfälligkeitssuche		Suche in 324607 CVE Beschreibungen und 145615 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.0.52055

Kategorie: CGI abuses

Titel: Invision Power Board ST Parameter SQL Injection

Zusammenfassung: NOSUMMARY

Beschreibung: Description:

The remote version of Invision Power Board, according to its
version number, is vulnerable to a SQL injection attack via
the 'st' parameter.

Version 1.3.1 and prior known to be vulnerable.

Solution : Upgrade to a newer version when one is available.
http://www.invisionboard.com/

Risk factor : High

CVSS Score:
7.5

Querverweis: BugTraq ID: 13097
Common Vulnerability Exposure (CVE) ID: CVE-2005-1070
http://www.securityfocus.com/bid/13097
Bugtraq: 20050411 Invision board 1.3.1 and below are vulnerable to a sql injection vulnerability [PATCH INCLUDED] (Google Search)
http://www.securityfocus.com/archive/1/395515
http://www.securitytracker.com/alerts/2005/Apr/1013676.html
XForce ISS Database: invision-memberlist-sql-injection(20059)
https://exchange.xforce.ibmcloud.com/vulnerabilities/20059

Copyright Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Test Kennung:	1.3.6.1.4.1.25623.1.0.52055
Kategorie:	CGI abuses
Titel:	Invision Power Board ST Parameter SQL Injection
Zusammenfassung:	NOSUMMARY
Beschreibung:	Description: The remote version of Invision Power Board, according to its version number, is vulnerable to a SQL injection attack via the 'st' parameter. Version 1.3.1 and prior known to be vulnerable. Solution : Upgrade to a newer version when one is available. http://www.invisionboard.com/ Risk factor : High CVSS Score: 7.5
Querverweis:	BugTraq ID: 13097 Common Vulnerability Exposure (CVE) ID: CVE-2005-1070 http://www.securityfocus.com/bid/13097 Bugtraq: 20050411 Invision board 1.3.1 and below are vulnerable to a sql injection vulnerability [PATCH INCLUDED] (Google Search) http://www.securityfocus.com/archive/1/395515 http://www.securitytracker.com/alerts/2005/Apr/1013676.html XForce ISS Database: invision-memberlist-sql-injection(20059) https://exchange.xforce.ibmcloud.com/vulnerabilities/20059
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com