Ultimate PHP Board (UPB) viewforum.php postorder Variable Path Disclosure

2005-05-13T03:46:25
ID OSVDB:16773
Type osvdb
Reporter Morinex Eneco(m0r1n3x@gmail.com)
Modified 2005-05-13T03:46:25

Description

Vulnerability Description

Ultimate PHP Board (UPB) contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a remote attacker provides malformed input to the 'postorder' variable in the 'viewforum.php' script, which will reveal the installation path resulting in a loss of confidentiality.

Solution Description

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Short Description

Ultimate PHP Board (UPB) contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a remote attacker provides malformed input to the 'postorder' variable in the 'viewforum.php' script, which will reveal the installation path resulting in a loss of confidentiality.

Manual Testing Notes

http://[victim]/forum/viewforum.php?id=123456789123456789&postorder=Morinex

References:

Vendor URL: http://www.myupb.com Related OSVDB ID: 16771 Related OSVDB ID: 16772 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2005-05/0165.html ISS X-Force ID: 20684 CVE-2005-1616