Exploitation Summary
EIP tracks 1 public exploit for CVE-2004-1536. PoCs published by axl daivy.
AI-analyzed exploit summary This exploit demonstrates a SQL injection vulnerability in ipbProArcade by manipulating the 'cat' parameter to perform a UNION-based attack, extracting sensitive user data from the 'ibf_members' table. It targets Invision Power Board versions 2.X with the Arcade module installed.
Description
SQL injection vulnerability in index.php in the ibProArcade module for Invision Power Board (IPB) 1.x and 2.x allows remote attackers to execute arbitrary SQL commands via the cat parameter.
Exploits (1)
This exploit demonstrates a SQL injection vulnerability in ipbProArcade by manipulating the 'cat' parameter to perform a UNION-based attack, extracting sensitive user data from the 'ibf_members' table. It targets Invision Power Board versions 2.X with the Arcade module installed.