Unrated severityNVD Advisory· Published Apr 11, 2005· Updated Jun 16, 2026
CVE-2005-1070
CVE-2005-1070
Description
SQL injection vulnerability in index.php in Invision Power Board 1.3.1 Final and earlier allows remote attackers to execute arbitrary SQL commands via the st parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
9cpe:2.3:a:invision_power_services:invision_board:1.0:*:*:*:*:*:*:*+ 8 more
- cpe:2.3:a:invision_power_services:invision_board:1.0:*:*:*:*:*:*:*
- cpe:2.3:a:invision_power_services:invision_board:1.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:invision_power_services:invision_board:1.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:invision_power_services:invision_board:1.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:invision_power_services:invision_board:1.2:*:*:*:*:*:*:*
- cpe:2.3:a:invision_power_services:invision_board:1.3:*:*:*:*:*:*:*
- cpe:2.3:a:invision_power_services:invision_board:1.3.1_final:*:*:*:*:*:*:*
- cpe:2.3:a:invision_power_services:invision_board:1.3_final:*:*:*:*:*:*:*
- (no CPE)range: <=1.3.1 Final
Patches
Vulnerability mechanics
References
4- www.securityfocus.com/archive/1/395515nvdVendor Advisory
- www.securityfocus.com/bid/13097nvdVendor Advisory
- www.securitytracker.com/alerts/2005/Apr/1013676.htmlnvdVendor Advisory
- exchange.xforce.ibmcloud.com/vulnerabilities/20059nvd
News mentions
0No linked articles in our index yet.