CVE-2007-2349

Cross-site scripting (XSS) vulnerability in Invision Power Board (IP.Board) 2.1.x and 2.2.x allows remote attackers to inject arbitrary web script or HTML by uploading crafted images or PDF files.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:invision_power_services:invision_power_board:2.1:*:*:*:*:*:*:*
cpe:2.3:a:invision_power_services:invision_power_board:2.2:*:*:*:*:*:*:*

History

No history.

Information

Published : 2007-04-30 22:19

Updated : 2024-02-04 17:13


NVD link : CVE-2007-2349

Mitre link : CVE-2007-2349

CVE.ORG link : CVE-2007-2349


JSON object : View

Products Affected

invision_power_services

  • invision_power_board