Full title: Invision Power Board 4.1.19.2 XSS / CSRF / File Upload / Disclosure Vulnerabilities 
Category: web applications
Platform: php
Invision Power Board version 4.1.19.2 suffers from reflective and stored cross site scripting, cross site request forgery, information disclosure, file upload, and shell access vulnerabilities.

# 0day.today @ http://0day.today/