CVE-2012-5692
critical
CVSS v3
—
CVSS v2
10.0
VIR risk
10.0
Description
Unspecified vulnerability in admin/sources/base/core.php in Invision Power Board (aka IPB or IP.Board) 3.1.x through 3.3.x has unknown impact and remote attack vectors.
Predictions
Exploit likelihood
20%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Vendor advisory: cve@mitre.org — http://secunia.com/advisories/51104
Vendor advisory: cve@mitre.org — http://community.invisionpower.com/topic/371625-ipboard-31x-32x-and-33x-security-update/
Application impact
| Vendor | Product | Versions | Fixed |
|---|---|---|---|
| invisioncommunity | invision_power_board | 3.1.2 | |
| invisioncommunity | invision_power_board | 3.3.0 | |
| invisionpower | invision_power_board | 3.1.0 | |
| invisionpower | invision_power_board | 3.1.1 | |
| invisionpower | invision_power_board | 3.1.3 | |
| invisionpower | invision_power_board | 3.1.4 | |
| invisionpower | invision_power_board | 3.2.0 | |
| invisionpower | invision_power_board | 3.2.1 | |
| invisionpower | invision_power_board | 3.2.2 | |
References
- http://community.invisionpower.com/topic/371625-ipboard-31x-32x-and-33x-security-update/
- http://secunia.com/advisories/51104
- http://www.securityfocus.com/bid/56288
- http://community.invisionpower.com/topic/371625-ipboard-31x-32x-and-33x-security-update/
- http://secunia.com/advisories/51104
- http://www.securityfocus.com/bid/56288
Verify integrity in audit chain (admin only). AS-IS.