CVE-2007-4913

Published: Sep 17, 2007Modified: Apr 23, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

ips_kernel/class_upload.php in Invision Power Board (IPB or IP.Board) 2.3.1 up to 20070912 allows remote attackers to upload arbitrary script files with crafted image filenames to uploads/, where they are saved with a .txt extension and are not executable. NOTE: there are limited usage scenarios under which this would be a vulnerability, but it is being tracked by CVE since the vendor has stated it is security-relevant.

Affected (7)

Products: Invision Power Services: Invision Power Board

Invision Power Services

1 product

Invision Power Board

Configuration A

7 vulnerable

Vulnerable Software	Affected Versions
Invision Power Services Invision Power Board	Up to 2.3.1
Invision Power Services Invision Power Board	Version 2.1.5_2006-03-08
Invision Power Services Invision Power Board	Version 2.1.5_2006-04-25
Invision Power Services Invision Power Board	Version 2.1.6
Invision Power Services Invision Power Board	Version 2.2.1
Invision Power Services Invision Power Board	Version 2.2.2
Invision Power Services Invision Power Board	Version 2.2

Related CWEs

CWE-94

Improper Control of Generation of Code ('Code Injection')

The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.

References (4)

http://forums.invisionpower.com/index.php?act=attach&type=post&id=11870

Source: cve@mitre.org

Patch

http://forums.invisionpower.com/index.php?showtopic=237075

Source: cve@mitre.org

http://forums.invisionpower.com/index.php?act=attach&type=post&id=11870

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

http://forums.invisionpower.com/index.php?showtopic=237075

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.