CVE-2006-7071

Invision Power Board 2.1-2.1.6 - SQL Injection via CLIENT_IP Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2006-7071. PoCs published by w4g.not null, RusH.

AI-analyzed exploit summary This exploit targets a SQL injection vulnerability in Invision Power Board 2.1.* by manipulating the 's' parameter in the URL to extract user credentials (hashes, salts, and emails) via UNION-based SQLi. It automates detection of the vulnerability, table prefix, and data exfiltration.

Description

SQL injection vulnerability in classes/class_session.php in Invision Power Board (IPB) 2.1 up to 2.1.6 allows remote attackers to execute arbitrary SQL commands via the CLIENT_IP parameter.

Exploits (2)

exploitdb WORKING POC VERIFIED
by w4g.not null · perlwebappsphp
https://www.exploit-db.com/exploits/2033

This exploit targets a SQL injection vulnerability in Invision Power Board 2.1.* by manipulating the 's' parameter in the URL to extract user credentials (hashes, salts, and emails) via UNION-based SQLi. It automates detection of the vulnerability, table prefix, and data exfiltration.

Classification
Working Poc 95%
Attack Type
Sqli
Complexity
Moderate
Reliability
Reliable
Target: Invision Power Board 2.1.*
No auth needed
Prerequisites: MySQL > 4.0 · Access to the target's index.php with the 's' parameter
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by RusH · perlwebappsphp
https://www.exploit-db.com/exploits/2010

This Perl script exploits a SQL injection vulnerability in Invision Power Board v2.1.* <= 2.1.6 via the LOCAL_IP parameter. It provides a GUI to extract database information, create admin accounts, and retrieve session data.

Classification
Working Poc 95%
Attack Type
Sqli
Complexity
Moderate
Reliability
Reliable
Target: Invision Power Board v2.1.* <= 2.1.6
No auth needed
Prerequisites: Network access to the target forum · Perl with Tk and LWP::UserAgent modules
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (7)

Core 7
Core References
Exploit, Patch mailing-list x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/2006-07/0249.html
Patch, Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/21072
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2006/2810
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/2010
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/27753
Third Party Advisory third-party-advisory x_refsource_sreason
http://securityreason.com/securityalert/2325

Scores

EPSS 0.0130
EPSS Percentile 66.6%

Details

Status published
Products (6)
invision_power_services/invision_power_board 2.1.1
invision_power_services/invision_power_board 2.1.2
invision_power_services/invision_power_board 2.1.3
invision_power_services/invision_power_board 2.1.4
invision_power_services/invision_power_board 2.1.5
invision_power_services/invision_power_board 2.1.6
Published Mar 02, 2007
Tracked Since Feb 18, 2026