Filtered by vendor Ultrascripts
Subscribe
Total
3 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2001-0135 | 1 Ultrascripts | 1 Ultraboard | 2024-11-20 | 2.1 LOW | N/A |
| The default installation of Ultraboard 2000 2.11 creates the Skins, Database, and Backups directories with world-writeable permissions, which could allow local users to modify sensitive information or possibly insert and execute CGI programs. | |||||
| CVE-2000-0426 | 1 Ultrascripts | 1 Ultraboard | 2024-11-20 | 5.0 MEDIUM | N/A |
| UltraBoard 1.6 and other versions allow remote attackers to cause a denial of service by referencing UltraBoard in the Session parameter, which causes UltraBoard to fork copies of itself. | |||||
| CVE-2000-0332 | 1 Ultrascripts | 1 Ultraboard | 2024-11-20 | 5.0 MEDIUM | N/A |
| UltraBoard.pl or UltraBoard.cgi CGI scripts in UltraBoard 1.6 allows remote attackers to read arbitrary files via a pathname string that includes a dot dot (..) and ends with a null byte. | |||||