Vulnerabilities > CVE-2005-2542 - Cross-Site Scripting vulnerability in Invision Power Board Attached File
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE Summary
Invision Power Board (IPB) 1.0.3 allows remote attackers to inject arbitrary web script or HTML via an attachment, which is automatically downloaded and processed as HTML.
Vulnerable Configurations
Exploit-Db
description | Invision Power Board 1.0.3 Attached File Cross-Site Scripting Vulnerability. CVE-2005-2542. Webapps exploit for php platform |
id | EDB-ID:26104 |
last seen | 2016-02-03 |
modified | 2005-08-08 |
published | 2005-08-08 |
reporter | V[i]RuS |
source | https://www.exploit-db.com/download/26104/ |
title | Invision Power Board 1.0.3 Attached File Cross-Site Scripting Vulnerability |