CVE-2016-6174

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2016-6174
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2016-6174.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2016-6174
Published
2016-07-12T19:59:09.567Z
Modified
2026-04-10T03:52:09.887553Z
Severity
  • 8.1 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

applications/core/modules/front/system/content.php in Invision Power Services IPS Community Suite (aka Invision Power Board, IPB, or Power Board) before 4.1.13, when used with PHP before 5.4.24 or 5.5.x before 5.5.8, allows remote attackers to execute arbitrary code via the content_class parameter.

References

Affected packages

Git / github.com/php/php-src

Affected ranges

Type
GIT
Repo
https://github.com/php/php-src
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
733fc5cd48cbbc0ace1530d869e5d69a79049b2e
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
2c2d0de09e522fe097bfcebfb758171eb6aa5270
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
a54db3838f780628d898369c4cfcf41f5bded97c
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
94eff14f26013d2be976036b288536d902b59971
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
a7c3d28e89e0617c54bf567eaca94fb8dad5dfdb
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
40eea49f64cc8a4fab18313ee25a872fce784a15
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
e926a1a71b17555c621b7f193bcd6625c916de48
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
437f4b193310bdf8bc2c37ffb0f54a9b6ede28eb
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
e941690b242b0cbf63baed95d067eaf94a231165
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
c5ffec0d344836909da4856ab0ef3d834e672312
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
6690cff375f5ffe4ba0e652f30b4b6ea8d35439f
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
a2a22c46686604f07a06fc6805368c0c281f7808
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
da76b1a87356695dfd9ce17c81801c3f8450a647
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
54ffe6a3b77c34e1352611243b9347c9411e4014
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
2c9b4e87a0bf3890a3f12d9929123f4e49d0b1f5
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
29b4532f618973b80b6b7017b44139995dce697c
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
d005ed9681d6797012570c4e32abb3abcdf3b72a
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
805934fef05d51649c98cd8dc6ee24c40458a47e
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
61249b01257929e96ce3e2ad7b9f0067a6c44aa4
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
f8f85eb9d193452473a188ea216cda5f38fb766e
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
6daaf1103b9ea36ecf04c5cffee9e8287fdf39c7
Database specific 
{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "5.4.23"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "5.5.0"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "5.5.0-alpha1"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "5.5.0-alpha2"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "5.5.0-alpha3"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "5.5.0-alpha4"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "5.5.0-alpha5"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "5.5.0-alpha6"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "5.5.0-beta1"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "5.5.0-beta2"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "5.5.0-beta3"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "5.5.0-beta4"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "5.5.0-rc1"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "5.5.0-rc2"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "5.5.1"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "5.5.2"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "5.5.3"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "5.5.4"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "5.5.5"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "5.5.6"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "5.5.7"
        }
    ]
}

Affected versions

php-5.*
php-5.4.23
php-5.4.23RC1
php-5.5.0RC1
php-5.5.0RC2
php-5.5.0alpha1
php-5.5.0alpha2
php-5.5.0alpha3
php-5.5.0alpha4
php-5.5.0alpha5
php-5.5.0alpha6
php-5.5.0beta1
php-5.5.0beta2
php-5.5.0beta3
php-5.5.0beta4
php-5.5.1
php-5.5.2
php-5.5.3
php-5.5.4
php-5.5.5
php-5.5.6
php-5.5.7
php-5.5.7RC1
Other
php5_5_0

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2016-6174.json"
unresolved_ranges 
[
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "4.1.12.3"
            }
        ]
    }
]