CVE-2006-2061
Invision Power Board 2.0.x-2.1.x - SQL Injection via ck Parameter
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2006-2061. PoCs published by IceShaman.
AI-analyzed exploit summary The provided code is a writeup describing an SQL injection vulnerability in Invision Power Board. It includes a proof-of-concept URL demonstrating the vulnerability but lacks executable exploit code.
Description
SQL injection vulnerability in lib/func_taskmanager.php in Invision Power Board (IPB) 2.1.x and 2.0.x before 20060425 allows remote attackers to execute arbitrary SQL commands via the ck parameter, which can inject at most 32 characters.
Exploits (1)
The provided code is a writeup describing an SQL injection vulnerability in Invision Power Board. It includes a proof-of-concept URL demonstrating the vulnerability but lacks executable exploit code.