Invision Power Services Invision Community Blog — known CVE vulnerabilities
Every CVE whose affected-product data names Invision Power Services Invision Community Blog, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2005-0217 — CVSS 7.5 (high): SQL injection vulnerability in index.php in Invision Community Blog allows remote attackers to execute arbitrary SQL commands via the eid…
CVE-2005-1946 — CVSS 7.5 (high): Multiple SQL injection vulnerabilities in Invision Blog before 1.1.2 Final allow remote attackers to execute arbitrary SQL commands via the…
CVE-2006-6369 — CVSS 7.5 (high): SQL injection vulnerability in lib/entry_reply_entry.php in Invision Community Blog Mod 1.2.4 allows remote attackers to execute arbitrary…
CVE-2006-2251 — CVSS 6.4 (medium): SQL injection vulnerability in the do_mmod function in mod.php in Invision Community Blog (ICB) 1.1.2 final through 1.2 allows remote…
CVE-2005-1945 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in the convert_highlite_words function in Invision Blog before 1.1.2 Final allows remote attackers…