CVE-2012-5692

Invision Power Board <3.3.x - Unknown Vuln

Title source: llm

Description

Unspecified vulnerability in admin/sources/base/core.php in Invision Power Board (aka IPB or IP.Board) 3.1.x through 3.3.x has unknown impact and remote attack vectors.

Exploits (4)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotephp

https://www.exploit-db.com/exploits/22686

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by EgiX · phpwebappsphp

https://www.exploit-db.com/exploits/22398

View Code ZIP pw:eip

exploitdb WORKING POC

by webDEViL · phpwebappsphp

https://www.exploit-db.com/exploits/22547

View Code ZIP pw:eip

metasploit WORKING POC EXCELLENT

by EgiX, juan vazquez, sinn3r · rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/unix/webapp/invision_pboard_unserialize_exec.rb

View Code ZIP pw:eip

References (3)

[Patch, Vendor Advisory] http://community.invisionpower.com/topic/371625-ipboard-31x-32x-and-33x-security-update/

[Vendor Advisory] http://secunia.com/advisories/51104

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/56288

Scores

EPSS 0.8303

EPSS Percentile 99.3%

Details

Status published

Products (9)

invisioncommunity/invision_power_board 3.1.2

invisioncommunity/invision_power_board 3.3.0

invisionpower/invision_power_board 3.1.0

invisionpower/invision_power_board 3.1.1

invisionpower/invision_power_board 3.1.3

invisionpower/invision_power_board 3.1.4

invisionpower/invision_power_board 3.2.0

invisionpower/invision_power_board 3.2.1

invisionpower/invision_power_board 3.2.2

Published Oct 31, 2012

Tracked Since Feb 18, 2026