Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Ultimate PHP Board (UPB) 1.0 and 1.0b allows remote authenticated users to gain privileges and perform unauthorized actions via direct requests to (1) admin_members.php, (2) admin_config.php, (3) admin_cat.php, or (4) admin_forum.php.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Ultimate PHP Board未授权远程管理访问漏洞
Vulnerability Description
Ultimate PHP Board是一款基于WEB的由PHP编写的论坛系统。 Ultimate PHP Board对部分管理页面没有进行正确的权限访问检查,远程攻击者可以利用这个漏洞执行管理员操作。 Ultimate PHP Board多个管理页面对受限用户的访问检查不正确,攻击者以普通用户访问: http://www.example.com/admin_members.php 可以提升自己为管理员权限。 访问http://www.example.com/admin_config.php 可以配置论坛其
CVSS Information
N/A
Vulnerability Type
N/A