Invision Power Services Sårbarheter

Tidslinje

Typ

Produkt

Invision Power Services IP.Board46
Invision Power Services Invision Gallery14
Invision Power Services Community Suite8
Invision Power Services Invision Board6
Invision Power Services IPS4

Åtgärd

Official Fix50
Temporary Fix0
Workaround2
Unavailable4
Not Defined32

Utnyttjbarhet

High12
Functional0
Proof-of-Concept34
Unproven4
Not Defined38

Åtkomstvektor

Not Defined0
Physical0
Local0
Adjacent0
Network88

Autentisering

Not Defined0
High0
Low10
None78

Användarinteraktion

Not Defined0
Required42
None46

C3BM Index

CVSSv3 Base

≤10
≤20
≤30
≤410
≤522
≤68
≤712
≤832
≤92
≤102

CVSSv3 Temp

≤10
≤20
≤30
≤410
≤522
≤614
≤732
≤86
≤94
≤100

VulDB

≤10
≤20
≤30
≤410
≤526
≤68
≤710
≤830
≤92
≤102

NVD

≤10
≤20
≤30
≤40
≤50
≤62
≤70
≤80
≤94
≤102

CNA

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Säljare

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Utnyttja 0-dagars

<1k10
<2k42
<5k36
<10k0
<25k0
<50k0
<100k0
≥100k0

Utnyttja idag

<1k88
<2k0
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Utnyttja marknadsvolymen

🔴 CTI Aktiviteter

Affected Products (9): Community Suite (6), IP.Board (56), IP.Gallery (1), IPS (3), Invision Board (4), Invision Community Blog (5), Invision Gallery (10), Invision Power Board (1), Invision Power Top Site List (1)

Link to Vendor Website: https://invisioncommunity.com/

PubliceradBaseTempSårbarhetProdUtnRemCTIEPSSCVE
18/08/20213.53.4Invision Power Services Community Suite IFRAME cross site scriptingOkändNot DefinedOfficial Fix0.000.00057CVE-2021-39250
18/08/20213.53.4Invision Power Services Community Suite Filename mt_rand cross site scriptingOkändNot DefinedOfficial Fix0.000.00087CVE-2021-39249
02/06/20215.55.3Invision Power Services Community Suite runProcessFunction privilegier eskaleringOkändNot DefinedOfficial Fix0.000.00745CVE-2021-32924
08/01/20217.57.2Invision Power Services Community Suite Download REST API files.php GETindex sql injektionOkändNot DefinedOfficial Fix0.000.00063CVE-2021-3025
06/01/20213.53.5Invision Power Services Community Suite Comments cross site scriptingOkändNot DefinedOfficial Fix0.000.00078CVE-2021-3026
11/05/20176.26.2Invision Power Services IPS SVG Document Stored privilegier eskaleringOkändNot DefinedNot Defined0.000.00166CVE-2017-8899
11/05/20177.07.0Invision Power Services IPS Announcement index.php Stored privilegier eskaleringOkändNot DefinedNot Defined0.010.00170CVE-2017-8898
11/05/20175.25.2Invision Power Services IPS UTF8 Converter index.php Reflected cross site scriptingOkändNot DefinedNot Defined0.010.00147CVE-2017-8897
23/04/20175.75.5Invision Power Services Community Suite Session Cookie uniqid svag krypteringOkändNot DefinedOfficial Fix0.010.00179CVE-2016-2564
04/09/20155.35.1Invision Power Services IP.Board URL förnekande av tjänstenForum SoftwareNot DefinedOfficial Fix0.020.00164CVE-2015-6812

77 fler poster visas inte

Want to stay up to date on a daily basis?

Enable the mail alert feature now!