2 matches found
CVE-2006-3203
The CVE-2006-3203 vulnerability affects Ultimate PHP Board (UPB) versions 1.9.6 and earlier, where a default administrator login and password exist. This root cause enables remote attackers to gain privileges (high impact) without authentication. Affected component: UPB installation process inclu...
CVE-2005-1614
Vulnerability overview (CVE-2005-1614) : The UPB (Ultimate PHP Board) versions 1.8 through 1.9.6 are affected by a cross-site scripting (XSS) flaw in the viewforum.php script, exploitable via the postorder parameter. This can allow remote attackers to inject arbitrary script/HTML. The NVD reports...