cve-2021-39249

  1. Marks-Man

    CVE CVE-2021-39249 | Invision Community (IPS) before 4.6.5.1 allows reflected XSS

    CVE-2021-39249 Invision Community (aka IPS Community Suite or IP-Board) before 4.6.5.1 allows reflected XSS because the filenames of uploaded files become predictable through a brute-force attack against the PHP mt_rand function. Date Record Created Assigning CNA References...
Top