← Back

CVE-2016-6174

nvd nist
Published: Jul 12, 2016Modified: May 6, 2026

JSON object

Loading...
8.1
Vector
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Exploitability: 2.2 / Impact: 5.9
Source: NVD

Description

applications/core/modules/front/system/content.php in Invision Power Services IPS Community Suite (aka Invision Power Board, IPB, or Power Board) before 4.1.13, when used with PHP before 5.4.24 or 5.5.x before 5.5.8, allows remote attackers to execute arbitrary code via the content_class parameter.

Affected (22)

Invisioncommunity
1 product
Invision Power Board
Php
1 product
Php
Configuration A
1 vulnerable
Vulnerable SoftwareAffected Versions
Invision Power Board
Up to 4.1.12.3
Configuration B
21 vulnerable
Vulnerable SoftwareAffected Versions
Php
Php
Up to 5.4.23
Php
Version 5.5.0
Php
Version 5.5.0 alpha1
Php
Version 5.5.0 alpha2
Php
Version 5.5.0 alpha3
Php
Version 5.5.0 alpha4
Php
Version 5.5.0 alpha5
Php
Version 5.5.0 alpha6
Php
Version 5.5.0 beta1
Php
Version 5.5.0 beta2
Php
Version 5.5.0 beta3
Php
Version 5.5.0 beta4
Php
Version 5.5.0 rc1
Php
Version 5.5.0 rc2
Php
Version 5.5.1
Php
Version 5.5.2
Php
Version 5.5.3
Php
Version 5.5.4
Php
Version 5.5.5
Php
Version 5.5.6
Php
Version 5.5.7

References (16)

Source: cve@mitre.org
Exploit
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Exploit
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
Exploit
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Exploit
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.