VYPR
Unrated severityNVD Advisory· Published Apr 26, 2006· Updated Jun 16, 2026

CVE-2006-2061

CVE-2006-2061

Description

SQL injection vulnerability in lib/func_taskmanager.php in Invision Power Board (IPB) 2.1.x and 2.0.x before 20060425 allows remote attackers to execute arbitrary SQL commands via the ck parameter, which can inject at most 32 characters.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

14
  • cpe:2.3:a:invision_power_services:invision_board:2.0:*:*:*:*:*:*:*+ 13 more
    • cpe:2.3:a:invision_power_services:invision_board:2.0:*:*:*:*:*:*:*
    • cpe:2.3:a:invision_power_services:invision_board:2.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:invision_power_services:invision_board:2.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:invision_power_services:invision_board:2.0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:invision_power_services:invision_board:2.0.4:*:*:*:*:*:*:*
    • cpe:2.3:a:invision_power_services:invision_board:2.0_alpha_3:*:*:*:*:*:*:*
    • cpe:2.3:a:invision_power_services:invision_board:2.0_pdr3:*:*:*:*:*:*:*
    • cpe:2.3:a:invision_power_services:invision_board:2.0_pf1:*:*:*:*:*:*:*
    • cpe:2.3:a:invision_power_services:invision_board:2.0_pf2:*:*:*:*:*:*:*
    • cpe:2.3:a:invision_power_services:invision_board:2.1:*:*:*:*:*:*:*
    • cpe:2.3:a:invision_power_services:invision_board:2.1.5:*:*:*:*:*:*:*
    • cpe:2.3:a:invision_power_services:invision_board:2.1_alpha2:*:*:*:*:*:*:*
    • cpe:2.3:a:invision_power_services:invision_power_board:2.1.5_2006-03-08:*:*:*:*:*:*:*
    • (no CPE)range: 2.1.x, 2.0.x before 20060425

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.