CVE-2005-1598

Invision Power Board <= 2.0.3 - SQL Injection via Cookie Password Hash

Title source: llm

Exploitation Summary

EIP tracks 3 public exploits for CVE-2005-1598. PoCs published by Danica Jones, Petey Beege.

AI-analyzed exploit summary This is a tutorial explaining how to use an exploit for CVE-2005-1598, which involves retrieving password hashes from Invision Power Board (IPB) forums and manipulating browser cookies to bypass authentication.

Description

SQL injection vulnerability in Invision Power Board (IPB) 2.0.3 and earlier allows remote attackers to execute arbitrary SQL commands via a crafted cookie password hash (pass_hash) that modifies the internal $pid variable.

Exploits (3)

exploitdb WRITEUP VERIFIED

by Danica Jones · textwebappsphp

https://www.exploit-db.com/exploits/1014

View Code ZIP pw:eip

This is a tutorial explaining how to use an exploit for CVE-2005-1598, which involves retrieving password hashes from Invision Power Board (IPB) forums and manipulating browser cookies to bypass authentication.

Classification

Writeup 90%

Attack Type

Auth Bypass

Complexity

Moderate

Reliability

Reliable

Target: Invision Power Board (IPB) version 2

No auth needed

Prerequisites: Access to the exploit script from ExploitDB (1013), Perl with LWP::UserAgent module, ability to modify Firefox cookie file

MITRE ATT&CK

T1552.001 - Credentials In Files T1557 - Adversary-in-the-Middle

devstral-2 · analyzed Feb 16, 2026 Full analysis →

exploitdb WORKING POC VERIFIED

by Petey Beege · perlwebappsphp

https://www.exploit-db.com/exploits/1013

View Code ZIP pw:eip

This Perl script exploits a SQL injection vulnerability in Invision Power Board to bypass authentication by brute-forcing the password hash. It iterates through possible characters to reconstruct the password or login key for a specified user ID.

Classification

Working Poc 95%

Attack Type

Sqli

Complexity

Moderate

Reliability

Reliable

Target: Invision Power Board (versions 1.x and 2.x)

No auth needed

Prerequisites: Target URL · User ID to impersonate · Version of Invision Power Board (1 or 2) · Cookie prefix (optional) · Debug flag (optional)

MITRE ATT&CK

T1189 - Drive-by Compromise T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 16, 2026 Full analysis →

exploitdb WRITEUP

webappsphp

https://www.exploit-db.com/exploits/43824

View Code ZIP pw:eip

This is a detailed technical analysis of CVE-2005-1598, covering SQL injection and XSS vulnerabilities in IP.Board. It includes code snippets, root cause analysis, and exploitation techniques, but does not provide functional exploit code.

Classification

Writeup 100%

Attack Type

Sqli | Xss

Complexity

Moderate

Reliability

Reliable

Target: Invision Power Board (IP.Board) <= 2.0.3

No auth needed

Prerequisites: Access to the target IP.Board instance · Ability to send crafted HTTP requests

MITRE ATT&CK