CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2006-3206

register.php in Ultimate PHP Board (UPB) 1.9.6 and earlier allows remote attackers to create arbitrary accounts via the "[NR]" sequence in the signature field, which is used to separate multiple records.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 54.8%

CVSS Severity

CVSS v2 Score 5.0

References

http://securityreason.com/securityalert/1138
http://www.securityfocus.com/archive/1/437875/100/0/threaded
http://securityreason.com/securityalert/1138
http://www.securityfocus.com/archive/1/437875/100/0/threaded

Products affected by CVE-2006-3206

Ultimate Php Board » Ultimate Php Board » Version: 1.8

cpe:2.3:a:ultimate_php_board:ultimate_php_board:1.8
Ultimate Php Board » Ultimate Php Board » Version: 1.8.2

cpe:2.3:a:ultimate_php_board:ultimate_php_board:1.8.2
Ultimate Php Board » Ultimate Php Board » Version: 1.9

cpe:2.3:a:ultimate_php_board:ultimate_php_board:1.9
Ultimate Php Board » Ultimate Php Board » Version: 1.9.6

cpe:2.3:a:ultimate_php_board:ultimate_php_board:1.9.6

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-3206

Products

Pricing

Contact Us