V[I]Rus

**Name of the Vulnerable Software and Affected Versions** Invision Power Board (IPB) version 1.0.3 **Description** The issue allows remote attackers to inject arbitrary web script or HTML via an attachment. This attachment is automatically downloaded and processed as HTML, potentially leading to malicious script execution. **Recommendations** For Invision Power Board (IPB) version 1.0.3, consider disabling the automatic processing of attachments as HTML until a patch is available. Restrict access to attachment downloads to minimize the risk of exploitation.