CVE-2006-7064

Published: Feb 24, 2007Modified: Apr 23, 2026

9.3

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Exploitability: 8.6 / Impact: 10.0

Source: NVD

Description

Cross-site scripting (XSS) vulnerability in forum/admin.php for Invision Power Board (IPB) 2.1.6 and earlier allows remote attackers to inject arbitrary web script or HTML as the administrator via the phpinfo parameter.

Affected (36)

Products: Invision Power Services: Invision Power Board

Invision Power Services

1 product

Invision Power Board

Configuration A

36 vulnerable

Vulnerable Software	Affected Versions
Invision Power Services Invision Power Board	Version 1.0.1
Invision Power Services Invision Power Board	Version 1.0.3
Invision Power Services Invision Power Board	Version 1.0
Invision Power Services Invision Power Board	Version 1.1.1
Invision Power Services Invision Power Board	Version 1.1.2
Invision Power Services Invision Power Board	Version 1.2
Invision Power Services Invision Power Board	Version 1.3.1_final
Invision Power Services Invision Power Board	Version 1.3
Invision Power Services Invision Power Board	Version 1.3_final
Invision Power Services Invision Power Board	Version 2.0.0
Invision Power Services Invision Power Board	Version 2.0.1
Invision Power Services Invision Power Board	Version 2.0.2
Invision Power Services Invision Power Board	Version 2.0.3
Invision Power Services Invision Power Board	Version 2.0.4
Invision Power Services Invision Power Board	Version 2.0.x
Invision Power Services Invision Power Board	Version 2.0
Invision Power Services Invision Power Board	Version 2.0_alpha3
Invision Power Services Invision Power Board	Version 2.0_pdr3
Invision Power Services Invision Power Board	Version 2.0_pf1
Invision Power Services Invision Power Board	Version 2.0_pf2
Invision Power Services Invision Power Board	Version 2.1.0
Invision Power Services Invision Power Board	Version 2.1.1
Invision Power Services Invision Power Board	Version 2.1.2
Invision Power Services Invision Power Board	Version 2.1.3
Invision Power Services Invision Power Board	Version 2.1.4
Invision Power Services Invision Power Board	Version 2.1.5
Invision Power Services Invision Power Board	Version 2.1.5_2006-03-08
Invision Power Services Invision Power Board	Version 2.1.5_2006-04-25
Invision Power Services Invision Power Board	Version 2.1.6
Invision Power Services Invision Power Board	Version 2.1
Invision Power Services Invision Power Board	Version 2.1_alpha2
Invision Power Services Invision Power Board	Version 2.1_beta2
Invision Power Services Invision Power Board	Version 2.1_beta3
Invision Power Services Invision Power Board	Version 2.1_beta4
Invision Power Services Invision Power Board	Version 2.1_beta5
Invision Power Services Invision Power Board	Version 2.1_rc1