CVE-2006-3197 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2006-3197
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2006-3197

Description: Cross-site scripting (XSS) vulnerability in Invision Power Board (IPB) 2.1.6 and earlier allows remote attackers to inject arbitrary web script or HTML via a POST that contains hexidecimal-encoded HTML.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/27701 SREASON http://securityreason.com/securityalert/596 SAID Secunia Advisory: SA20772 OSVDB 26747 CONFIRM http://forums.invisionpower.com/index.php?showtopic=219126 BID 18571

Return to the previous page.