5
CVE-2006-3207
- EPSS 1.26%
- Veröffentlicht 24.06.2006 01:06:00
- Zuletzt bearbeitet 16.06.2026 22:26:37
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginDirectory traversal vulnerability in newpost.php in Ultimate PHP Board (UPB) 1.9.6 and earlier allows remote attackers to overwrite arbitrary files via a .. (dot dot) sequence and trailing null (%00) byte in the id parameter, as demonstrated by injecting a Perl CGI script using "[NR]" sequences in the message parameter, then calling close.php with modified id and t_id parameters to chmod the script. NOTE: this issue might be resultant from dynamic variable evaluation.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Ultimate Php Board ≫ Ultimate Php Board Version1.8
Ultimate Php Board ≫ Ultimate Php Board Version1.8.2
Ultimate Php Board ≫ Ultimate Php Board Version1.9
Ultimate Php Board ≫ Ultimate Php Board Version1.9.6
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.26% | 0.657 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:N/I:P/A:N
|
http://securityreason.com/securityalert/1138
http://www.securityfocus.com/archive/1/437875/100/0/threaded