|
CVE Reference: CVE-2006-6790
|
|
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.
|
|
Original Page at CVE MITRE:
CVE-2006-6790
|
|
Description:
Direct static code injection vulnerability in chat/login.php in Ultimate PHP Board (UPB) 2.0b1 and earlier allows remote attackers to inject arbitrary PHP code via the username parameter, which is injected into chat/text.php.
|
|
CVE Status:
Candidate
|
|
References:
MISC
http://www.securityfocus.com/data/vulnerabilities/exploits/21760.pl
BID
21760
|
|
|
Return to the previous page.
|
