Vulnerabilities > Invisioncommunity > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-08-17 | CVE-2021-39250 | Cross-site Scripting vulnerability in Invisioncommunity Invision Power Board Invision Community (aka IPS Community Suite or IP-Board) before 4.6.5.1 allows stored XSS, with resultant code execution, because an uploaded file can be placed in an IFRAME element within user-generated content. | 3.5 |
| 2020-12-30 | CVE-2020-29477 | Cross-site Scripting vulnerability in Invisioncommunity Community 4.5.4 Invision Community 4.5.4 is affected by cross-site scripting (XSS) in the Field Name field. | 3.5 |