Invisionpower Invision Power Board — known CVE vulnerabilities
Every CVE whose affected-product data names Invisionpower Invision Power Board, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2012-5692 — CVSS 10.0 (critical): Unspecified vulnerability in admin/sources/base/core.php in Invision Power Board (aka IPB or IP.Board) 3.1.x through 3.3.x has unknown…
CVE-2014-9239 — CVSS 7.5 (high): SQL injection vulnerability in the IPS Connect service (interface/ipsconnect/ipsconnect.php) in Invision Power Board (aka IPB or IP.Board)…
CVE-2006-0633 — CVSS 6.4 (medium): The make_password function in ipsclass.php in Invision Power Board (IPB) 2.1.4 uses random data generated from partially predictable seeds…
CVE-2015-6810 — CVSS 3.5 (low): Cross-site scripting (XSS) vulnerability in Invision Power Services IPS Community Suite (aka Invision Power Board, IPB, or Power Board) 4.x…