Home > Access Bypass, Discussion Boards, Information Disclosure > Ultimate PHP Board Security Bypass and File Disclosure

Ultimate PHP Board Security Bypass and File Disclosure

July 29th, 2010

Application: Ultimate PHP Board
Affected Version: version 2.2.6 and other versions.
Vendor’s URL: Ultimate PHP Board
Bug Type: Security Bypass and File Disclosure
Risk Level: Medium

Solution:
Restrict access to the admin_restore.php script (e.g. via .htaccess). Edit the source code to ensure that input is properly verified.

Access Bypass, Discussion Boards, Information Disclosure

Comments are closed.