Unrated severityNVD Advisory· Published Dec 28, 2006· Updated Jun 16, 2026
CVE-2006-6790
CVE-2006-6790
Description
Direct static code injection vulnerability in chat/login.php in Ultimate PHP Board (UPB) 2.0b1 and earlier allows remote attackers to inject arbitrary PHP code via the username parameter, which is injected into chat/text.php.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- cpe:2.3:a:ultimate_php_board:ultimate_php_board:*:*:*:*:*:*:*:*Range: <=2.0_beta_1
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.