Unrated severityNVD Advisory· Published Sep 22, 2008· Updated Jun 16, 2026
CVE-2008-4171
CVE-2008-4171
Description
SQL injection vulnerability in xmlout.php in Invision Power Board (IP.Board or IPB) 2.2.x and 2.3.x allows remote attackers to execute arbitrary SQL commands via the name parameter.
Affected products
5cpe:2.3:a:invision_power_services:invision_power_board:2.2:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:invision_power_services:invision_power_board:2.2:*:*:*:*:*:*:*
- cpe:2.3:a:invision_power_services:invision_power_board:2.3:*:*:*:*:*:*:*
- Range: 2.2.x, 2.3.x
- Range: 2.2.x, 2.3.x
- Range: 2.2.x, 2.3.x
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.