CVE-2006-2675 : Detail

PHP remote file inclusion vulnerability in ubbt.inc.php in UBBThreads 5.x and 6.x allows remote attackers to execute arbitrary PHP code via a URL in the (1) thispath or (2) configdir parameters.

Metrics

EPSS

EPSS Score

EPSS Percentile

Exploit information

Exploit Database EDB-ID : 1843

Publication date : 2006-05-27 22h00 +00:00
Author : nukedx
EDB Verified : Yes

Products Mentioned

Configuraton 0

Ubbcentral>>Ubb.threads >> Version To (including) 6.5.3

Ubbcentral>>Ubb.threads >> Version 3.4

Ubbcentral>>Ubb.threads >> Version 3.5

Ubbcentral>>Ubb.threads >> Version 5.0

Ubbcentral>>Ubb.threads >> Version 5.5.1

Ubbcentral>>Ubb.threads >> Version 6.0

Ubbcentral>>Ubb.threads >> Version 6.0.1

Ubbcentral>>Ubb.threads >> Version 6.0.2

Ubbcentral>>Ubb.threads >> Version 6.0.3

Ubbcentral>>Ubb.threads >> Version 6.1

Ubbcentral>>Ubb.threads >> Version 6.1.1

Ubbcentral>>Ubb.threads >> Version 6.2

Ubbcentral>>Ubb.threads >> Version 6.2.1

Ubbcentral>>Ubb.threads >> Version 6.2.2

Ubbcentral>>Ubb.threads >> Version 6.2.3

Ubbcentral>>Ubb.threads >> Version 6.3

Ubbcentral>>Ubb.threads >> Version 6.3.1

Ubbcentral>>Ubb.threads >> Version 6.4

Ubbcentral>>Ubb.threads >> Version 6.4.1

Ubbcentral>>Ubb.threads >> Version 6.4.2

Ubbcentral>>Ubb.threads >> Version 6.4.3

Ubbcentral>>Ubb.threads >> Version 6.4.4

Ubbcentral>>Ubb.threads >> Version 6.5

Ubbcentral>>Ubb.threads >> Version 6.5.1

Ubbcentral>>Ubb.threads >> Version 6.5.1.1

Ubbcentral>>Ubb.threads >> Version 6.5.2

Ubbcentral>>Ubb.threads >> Version 6.5.2_beta2

References