CVE-2005-1070 - Jasp Welsh Corgi

Description

SQL injection vulnerability in index.php in Invision Power Board 1.3.1 Final and earlier allows remote attackers to execute arbitrary SQL commands via the st parameter.

Reference

http://www.securityfocus.com/archive/1/395515 http://www.securityfocus.com/bid/13097 http://www.securitytracker.com/alerts/2005/Apr/1013676.html https://exchange.xforce.ibmcloud.com/vulnerabilities/20059