3 matches found
Ultimate PHP Board users.dat Multiple Vulnerabilities
The remote host is running Ultimate PHP Board UPB. The remote version of this software is prone to a weak password encryption vulnerability and may store the users.dat file under the web document root with insufficient access control. %NASLMINLEVEL 70300 This script was written by Josh...
CVE-2005-2030
Ultimate PHP Board UPB 1.9.6 GOLD uses weak encryption for passwords in the users.dat file, which allows attackers to easily decrypt the passwords and gain privileges, possibly after exploiting CVE-2005-2005 to obtain users.dat...
CVE-2005-2030
Ultimate PHP Board (UPB) 1.9.6 GOLD stores passwords in the users.dat file with weak encryption and places it under the web document root, enabling remote attackers to obtain credentials via direct access to db/users.dat. The vulnerability notes suggest exploitation could involve CVE-2005-2005 to...