Skip to main content
CVE-2015-6810 LOW POC Monitor

Cross-site scripting (XSS) vulnerability in Invision Power Services IPS Community Suite (aka Invision Power Board, IPB, or Power Board) 4.x before 4.0.12.1 allows remote authenticated users to inject. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

XSS Invision Power Board
NVD Exploit-DB
CVSS 2.0
3.5
EPSS
0.8%
CVE-2015-6808 LOW PATCH Monitor

Cross-site scripting (XSS) vulnerability in the Spotlight module 7.x-1.x before 7.x-1.5 for Drupal allows remote authenticated users with certain permissions to inject arbitrary web script or HTML. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable.

XSS Spotlight
NVD
CVSS 2.0
3.5
EPSS
0.1%
CVE-2015-6807 LOW PATCH Monitor

Cross-site scripting (XSS) vulnerability in the Mass Contact module 6.x-1.x before 6.x-1.6 and 7.x-1.x before 7.x-1.1 for Drupal allows remote authenticated users with the "administer mass contact". Rated low severity (CVSS 2.1), this vulnerability is remotely exploitable.

XSS Mass Contact
NVD
CVSS 2.0
2.1
EPSS
0.2%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy