Arbitrary file deletion

2020-01-2217:15:00

PRIOn knowledge base

www.prio-n.com

7 High

AI Score

Confidence

Low

0.02 Low

EPSS

Percentile

88.9%

A File Inclusion vulnerability exists in act parameter to admin.php in UseBB before 1.0.12.

CPENameOperatorVersion
usebblt1.0.12

CPE	Name	Operator	Version
	usebb	lt	1.0.12

References

packetstormsecurity.com/files/100103/UseBB-1.0.11-Cross-Site-Request-Forgery-Local-File-Inclusion.html

www.immuniweb.com/advisory/HTB22913

www.openwall.com/lists/oss-security/2011/10/10/4