VYPR

Ultimate PHP Board

by Ultimate PHP Board

CVEs (24)

  • CVE-2002-1820CriDec 31, 2002
    risk 0.64cvss 9.8epss 0.02

    register.php in Ultimate PHP Board (UPB) 1.0 and 1.0b uses an administrative account Admin with a capital "A," but allows a remote attacker to impersonate the administrator by registering an account name of admin with a lower case "a."

  • CVE-2008-6727Apr 20, 2009
    risk 0.03cvss epss 0.01

    Cross-site scripting (XSS) vulnerability in Ultimate PHP Board (UPB) 2.2.2, 2.2.1, and earlier 2.x versions allows remote attackers to inject arbitrary web script or HTML via the User-Agent HTTP header.

  • CVE-2006-7169Mar 20, 2007
    risk 0.03cvss epss 0.05

    PHP remote file inclusion vulnerability in includes/header_simple.php in Ultimate PHP Board (UPB) 2.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the _CONFIG[skin_dir] parameter.

  • CVE-2006-6790Dec 28, 2006
    risk 0.03cvss epss 0.02

    Direct static code injection vulnerability in chat/login.php in Ultimate PHP Board (UPB) 2.0b1 and earlier allows remote attackers to inject arbitrary PHP code via the username parameter, which is injected into chat/text.php.

  • CVE-2005-2030Jun 16, 2005
    risk 0.03cvss epss 0.03

    Ultimate PHP Board (UPB) 1.9.6 GOLD uses weak encryption for passwords in the users.dat file, which allows attackers to easily decrypt the passwords and gain privileges, possibly after exploiting CVE-2005-2005 to obtain users.dat.

  • CVE-2005-1615May 16, 2005
    risk 0.03cvss epss 0.02

    viewforum.php in Ultimate PHP Board (UPB) 1.8 through 1.9.6 may allow remote attackers to read sensitive data via the postorder parameter, which is not properly handled by textdb.inc.php, possibly due to a SQL injection vulnerability.

  • CVE-2005-1614May 16, 2005
    risk 0.03cvss epss 0.04

    Cross-site scripting (XSS) vulnerability in viewforum.php in Ultimate PHP Board (UPB) 1.8 through 1.9.6 allows remote attackers to inject arbitrary web script or HTML via the postorder parameter.

  • CVE-2003-0395Jul 2, 2003
    risk 0.03cvss epss 0.03

    Ultimate PHP Board (UPB) 1.9 allows remote attackers to execute arbitrary PHP code with UPB administrator privileges via an HTTP request containing the code in the User-Agent header, which is executed when the administrator executes admin_iplog.php.

  • CVE-2025-61540Oct 16, 2025
    risk 0.00cvss epss 0.00

    SQL injection vulnerability in Ultimate PHP Board 2.2.7 via the username field in lostpassword.php.

  • CVE-2025-61539Oct 16, 2025
    risk 0.00cvss epss 0.00

    Cross site scripting (XSS) vulnerability in Ultimate PHP Board 2.2.7 via the u_name parameter in lostpassword.php.

  • CVE-2006-3205Jun 24, 2006
    risk 0.00cvss epss 0.01

    Ultimate PHP Board (UPB) 1.9.6 and earlier allows remote attackers to gain access via modified user_env, pass_env, power_env, and id_env parameters in a cookie, which comprise a persistent logon that does not vary across sessions.

  • CVE-2006-3207Jun 24, 2006
    risk 0.00cvss epss 0.01

    Directory traversal vulnerability in newpost.php in Ultimate PHP Board (UPB) 1.9.6 and earlier allows remote attackers to overwrite arbitrary files via a .. (dot dot) sequence and trailing null (%00) byte in the id parameter, as demonstrated by injecting a Perl CGI script using…

  • CVE-2006-3208Jun 24, 2006
    risk 0.00cvss epss 0.01

    Direct static code injection vulnerability in Ultimate PHP Board (UPB) 1.9.6 and earlier allows remote authenticated administrators to execute arbitrary PHP code via multiple unspecified "configuration fields" in (1) admin_chatconfig.php, (2) admin_configcss.php, (3)…

  • CVE-2006-3204Jun 24, 2006
    risk 0.00cvss epss 0.02

    Ultimate PHP Board (UPB) 1.9.6 and earlier uses a cryptographically weak block cipher with a large key collision space, which allows remote attackers to determine a suitable decryption key given the plaintext and ciphertext by obtaining the plaintext password, which is sent when…

  • CVE-2006-3203Jun 24, 2006
    risk 0.00cvss epss 0.03

    The installation of Ultimate PHP Board (UPB) 1.9.6 and earlier includes a default administrator login account and password, which allows remote attackers to gain privileges.

  • CVE-2006-3206Jun 24, 2006
    risk 0.00cvss epss 0.01

    register.php in Ultimate PHP Board (UPB) 1.9.6 and earlier allows remote attackers to create arbitrary accounts via the "[NR]" sequence in the signature field, which is used to separate multiple records.

  • CVE-2005-2004Jun 17, 2005
    risk 0.00cvss epss 0.01

    Multiple cross-site scripting vulnerabilities in Ultimate PHP Board (UPB) 1.9.6 GOLD and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) ref parameter to login.php, (2) id or (3) page parameter to viewtopic.php, id parameter to (4) profile.php,…

  • CVE-2005-2003Jun 16, 2005
    risk 0.00cvss epss 0.01

    Ultimate PHP Board (UPB) 1.9.6 GOLD allows remote attackers to obtain sensitive information via an invalid (zero) id parameter to (1) viewtopic.php, (2) profile.php, or (3) newpost.php, which reveals the path in an error message.

  • CVE-2005-2005Jun 16, 2005
    risk 0.00cvss epss 0.01

    Ultimate PHP Board (UPB) 1.9.6 GOLD and earlier stores the users.dat file under the web document root with insufficient access control, which allows remote attackers to obtain sensitive information on registered users via a direct request to db/users.dat.

  • CVE-2005-1616May 16, 2005
    risk 0.00cvss epss 0.01

    viewforum.php in Ultimate PHP Board (UPB) 1.8 through 1.9.6 allows remote attackers to obtain sensitive information via an invalid (1) id or possibly (2) postorder parameter, which reveals the path in an error message when a file can not be opened.

Page 1 of 2