CVE-2006-3206

2006-06-23T21:06:00
ID CVE-2006-3206
Type cve
Reporter NVD
Modified 2008-09-05T17:06:30

Description

register.php in Ultimate PHP Board (UPB) 1.9.6 and earlier allows remote attackers to create arbitrary accounts via the "[NR]" sequence in the signature field, which is used to separate multiple records.