Invision Power Board HTML Injection Vulnerability
BID:12888
Info
Invision Power Board HTML Injection Vulnerability
| Bugtraq ID: | 12888 |
| Class: | Input Validation Error |
| CVE: |
CVE-2005-0886 |
| Remote: | Yes |
| Local: | No |
| Published: | Mar 23 2005 12:00AM |
| Updated: | Jul 12 2009 11:56AM |
| Credit: | Discovery is credited to Woody <[email protected]>. |
| Vulnerable: |
Invision Power Services Invision Board 2.0.2 Invision Power Services Invision Board 2.0.1 Invision Power Services Invision Board 2.0 PF2 Invision Power Services Invision Board 2.0 PF1 Invision Power Services Invision Board 2.0 PDR3 Invision Power Services Invision Board 2.0 Alpha 3 Invision Power Services Invision Board 2.0 Invision Power Services Invision Board 1.3.1 Final Invision Power Services Invision Board 1.3 Final Invision Power Services Invision Board 1.3 Invision Power Services Invision Board 1.3 Invision Power Services Invision Board 1.2 Invision Power Services Invision Board 1.1.2 Invision Power Services Invision Board 1.1.1 Invision Power Services Invision Board 1.0.1 Invision Power Services Invision Board 1.0 |
| Not Vulnerable: | |
Discussion
Invision Power Board HTML Injection Vulnerability
Invision Power Board is reported prone to an HTML injection vulnerability. This issue arises due to insufficient sanitization of user-supplied data.
It is reported that due to a lack of filtering of HTML tags, an attacker can inject an IFRAME through an HTTP POST request.
All version of Invision Power Board are considered vulnerable at the moment.
This BID will be updated when more information is available.
Invision Power Board is reported prone to an HTML injection vulnerability. This issue arises due to insufficient sanitization of user-supplied data.
It is reported that due to a lack of filtering of HTML tags, an attacker can inject an IFRAME through an HTTP POST request.
All version of Invision Power Board are considered vulnerable at the moment.
This BID will be updated when more information is available.
Exploit / POC
Invision Power Board HTML Injection Vulnerability
An exploit is not required to leverage this issue.
The following proof of concept is available:
<iframe id="frame1" name="frame1" frameborder=0 width=0 height=0
src="http://www.example.com/forums/index.php?act=Msg&CODE=04&MODE=1&entered_name=Woody&msg_title=hi&Post=I%20love%20you!">
</iframe>
An exploit is not required to leverage this issue.
The following proof of concept is available:
<iframe id="frame1" name="frame1" frameborder=0 width=0 height=0
src="http://www.example.com/forums/index.php?act=Msg&CODE=04&MODE=1&entered_name=Woody&msg_title=hi&Post=I%20love%20you!">
</iframe>
Solution / Fix
Invision Power Board HTML Injection Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
References
Invision Power Board HTML Injection Vulnerability
References:
References:
- Invision Board Homepage (Invision Power Services)