CVE-2006-3543

Invision Power Board <2.x - SQL Injection

Title source: llm
STIX 2.1

Description

Multiple SQL injection vulnerabilities in Invision Power Board (IPB) 1.x and 2.x allow remote attackers to execute arbitrary SQL commands via the (1) idcat and (2) code parameters in a ketqua action in index.php; the id parameter in a (3) Attach and (4) ref action in index.php; the CODE parameter in a (5) Profile, (6) Login, and (7) Help action in index.php; and the (8) member_id parameter in coins_list.php. NOTE: the developer has disputed this issue, stating that the "CODE attribute is never present in an SQL query" and the "'ketqua' [action] and file 'coin_list.php' are not standard IPB 2.x features". It is unknown whether these vectors are associated with an independent module or modification of IPB

Exploits (1)

exploitdb WRITEUP VERIFIED
by CrAzY CrAcKeR · textwebappsphp
https://www.exploit-db.com/exploits/28167

References (5)

Core 5
Core References
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/18836
Third Party Advisory third-party-advisory x_refsource_sreason
http://securityreason.com/securityalert/1231
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/439145/100/0/threaded
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/30084
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/439602/100/0/threaded

Scores

EPSS 0.0073
EPSS Percentile 72.8%

Details

Status published
Products (23)
invision_power_services/invision_power_board 1.0
invision_power_services/invision_power_board 1.0.1
invision_power_services/invision_power_board 1.0.3
invision_power_services/invision_power_board 1.1.1
invision_power_services/invision_power_board 1.1.2
invision_power_services/invision_power_board 1.2
invision_power_services/invision_power_board 1.3
invision_power_services/invision_power_board 1.3.1_final
invision_power_services/invision_power_board 1.3_final
invision_power_services/invision_power_board 2.0
... and 13 more
Published Jul 13, 2006
Tracked Since Feb 18, 2026