CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2003-0395

HIGH
7.5
CVSS Severity Score
EPSS Score0.0900%
EPSS Percentile35.24th
Published2003年7月2日
Last Modified2026年4月16日

Vulnerability Description

Ultimate PHP Board (UPB) 1.9 allows remote attackers to execute arbitrary PHP code with UPB administrator privileges via an HTTP request containing the code in the User-Agent header, which is executed when the administrator executes admin_iplog.php.

Affected Platforms (CPE)

📦
Myupb

Ultimate Php Board

= 1.9

References & Advisories

🔗 http://f0kp.iplus.ru/bz/024.en.txt
🔗 http://marc.info/?l=bugtraq&m=105379741528925&w=2
🔗 http://f0kp.iplus.ru/bz/024.en.txt
🔗 http://marc.info/?l=bugtraq&m=105379741528925&w=2

相關漏洞威脅

CVE-2006-320310.0

The installation of Ultimate PHP Board (UPB) 1.9.6 and earlier includes a default administrator login account and password, which ...

CVE-2002-18209.8

register.php in Ultimate PHP Board (UPB) 1.0 and 1.0b uses an administrative account Admin with a capital "A," but allows a remote...

CVE-2005-16157.5

viewforum.php in Ultimate PHP Board (UPB) 1.8 through 1.9.6 may allow remote attackers to read sensitive data via the postorder pa...

CVE-2005-16167.5

viewforum.php in Ultimate PHP Board (UPB) 1.8 through 1.9.6 allows remote attackers to obtain sensitive information via an invalid...

CVE-2003-0395 Detail & Impact Analysis | CVSS 7.5 (HIGH) | Cyber-Sec.Space | Cyber-Sec.Space