5
CVE-2006-3207
- EPSS 0.28%
- Veröffentlicht 24.06.2006 01:06:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginDirectory traversal vulnerability in newpost.php in Ultimate PHP Board (UPB) 1.9.6 and earlier allows remote attackers to overwrite arbitrary files via a .. (dot dot) sequence and trailing null (%00) byte in the id parameter, as demonstrated by injecting a Perl CGI script using "[NR]" sequences in the message parameter, then calling close.php with modified id and t_id parameters to chmod the script. NOTE: this issue might be resultant from dynamic variable evaluation.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Ultimate Php Board ≫ Ultimate Php Board Version1.8
Ultimate Php Board ≫ Ultimate Php Board Version1.8.2
Ultimate Php Board ≫ Ultimate Php Board Version1.9
Ultimate Php Board ≫ Ultimate Php Board Version1.9.6
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.28% | 0.507 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:N/I:P/A:N
|