Ultrascripts Ultraboard vulnerabilities
3 known vulnerabilities affecting ultrascripts/ultraboard.
Total CVEs
3
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
MEDIUM2LOW1
Vulnerabilities
Page 1 of 1
CVE-2000-0332P4MEDIUMCVSS 5.0PoCv1.62000-05-03
CVE-2000-0332 [MEDIUM] CVE-2000-0332: UltraBoard.pl or UltraBoard.cgi CGI scripts in UltraBoard 1.6 allows remote attackers to read arbitr
UltraBoard.pl or UltraBoard.cgi CGI scripts in UltraBoard 1.6 allows remote attackers to read arbitrary files via a pathname string that includes a dot dot (..) and ends with a null byte.
nvd
CVE-2000-0426P4MEDIUMCVSS 5.0PoCv1.62000-05-05
CVE-2000-0426 [MEDIUM] CVE-2000-0426: UltraBoard 1.6 and other versions allow remote attackers to cause a denial of service by referencing
UltraBoard 1.6 and other versions allow remote attackers to cause a denial of service by referencing UltraBoard in the Session parameter, which causes UltraBoard to fork copies of itself.
nvd
CVE-2001-0135P4LOWCVSS 2.1v2.112001-03-12
CVE-2001-0135 [LOW] CVE-2001-0135: The default installation of Ultraboard 2000 2.11 creates the Skins, Database, and Backups directorie
The default installation of Ultraboard 2000 2.11 creates the Skins, Database, and Backups directories with world-writeable permissions, which could allow local users to modify sensitive information or possibly insert and execute CGI programs.
nvd