CVE-2006-7071

Published: Mar 2, 2007Modified: Apr 23, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

SQL injection vulnerability in classes/class_session.php in Invision Power Board (IPB) 2.1 up to 2.1.6 allows remote attackers to execute arbitrary SQL commands via the CLIENT_IP parameter.

Affected (6)

Products: Invision Power Services: Invision Power Board

Invision Power Services

1 product

Invision Power Board

Configuration A

6 vulnerable

Vulnerable Software	Affected Versions
Invision Power Services Invision Power Board	Version 2.1.1
Invision Power Services Invision Power Board	Version 2.1.2
Invision Power Services Invision Power Board	Version 2.1.3
Invision Power Services Invision Power Board	Version 2.1.4
Invision Power Services Invision Power Board	Version 2.1.5
Invision Power Services Invision Power Board	Version 2.1.6

References (14)

http://archives.neohapsis.com/archives/bugtraq/2006-07/0249.html

Source: cve@mitre.org

ExploitPatch

http://rst.void.ru/download/r57ipb216gui.txt

Source: cve@mitre.org

Exploit

http://secunia.com/advisories/21072

Source: cve@mitre.org

PatchVendor Advisory

http://securityreason.com/securityalert/2325

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2006/2810

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/27753

Source: cve@mitre.org

https://www.exploit-db.com/exploits/2010

Source: cve@mitre.org

http://archives.neohapsis.com/archives/bugtraq/2006-07/0249.html

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitPatch

http://rst.void.ru/download/r57ipb216gui.txt

Source: af854a3a-2127-422b-91ae-364da2661108

Exploit

http://secunia.com/advisories/21072

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://securityreason.com/securityalert/2325

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2006/2810

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/27753

Source: af854a3a-2127-422b-91ae-364da2661108

https://www.exploit-db.com/exploits/2010

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.