Test ID:	1.3.6.1.4.1.25623.1.0.52057
Category:	CGI abuses
Title:	Invision Power Board SML Code Script Injection
Summary:	NOSUMMARY
Description:	Description: The remote version of Invision Power Board, according to its version number, is vulnerable to an Javascript injection attack due to insufficient filtering of the 'COLOR' tag for mailicious content. Version 1.3.1 and prior, as well as 2.0.3 and prior, are known to be vulnerable. Solution : Upgrade to a newer version when one is available. http://www.invisionboard.com/ Risk factor : Medium CVSS Score: 4.3
Cross-Ref:	BugTraq ID: 12607 Common Vulnerability Exposure (CVE) ID: CVE-2005-0477 Bugtraq: 20050217 Invision Power Boards 1.3.1 FINAL XSS Exploit (Google Search) http://marc.info/?l=bugtraq&m=110868196922995&w=2 XForce ISS Database: invision-power-board-sml-xss(19399) https://exchange.xforce.ibmcloud.com/vulnerabilities/19399
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.