← Back

CVE-2005-2005

nvd nist
Published: Jun 16, 2005Modified: Apr 16, 2026

JSON object

Loading...
5.0
Vector
AV:N/AC:L/Au:N/C:P/I:N/A:N
Exploitability: 10.0 / Impact: 2.9
Source: NVD

Description

Ultimate PHP Board (UPB) 1.9.6 GOLD and earlier stores the users.dat file under the web document root with insufficient access control, which allows remote attackers to obtain sensitive information on registered users via a direct request to db/users.dat.

Affected (4)

Ultimate Php Board
1 product
Ultimate Php Board
Configuration A
4 vulnerable
Vulnerable SoftwareAffected Versions
Ultimate Php Board
Version 1.8.2
Ultimate Php Board
Version 1.8
Ultimate Php Board
Version 1.9.6
Ultimate Php Board
Version 1.9

References (4)

Source: cve@mitre.org
Source: cve@mitre.org
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory

Timeline

No history available yet.