Security Advisory

CVE-2021-32924

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-06-01 17:47:42

Last updated 2024-08-03 23:33:56

Assigner mitre

State PUBLISHED

Description

Invision Community (aka IPS Community Suite) before 4.6.0 allows eval-based PHP code injection by a moderator because the IPScmsmodulesfrontpages_builder::previewBlock method interacts unsafely with the IPS_Theme::runProcessFunction method.

← Browse all CVEs View on cve.org ↗