Invision Power Board version 2.1 is susceptible to javascript injection and cross site scripting attacks. English version of this advisory translated by Jerome Athias. Exploitation details provided.
8b1b5097ef20b451fcda26afa6d66afb1521d2ef736c3cb1b0b83a5a13cd856d