CVE-2005-2003

Ultimate PHP Board (UPB) 1.9.6 GOLD allows remote attackers to obtain sensitive information via an invalid (zero) id parameter to (1) viewtopic.php, (2) profile.php, or (3) newpost.php, which reveals the path in an error message.

Published: Jun 16, 2005
Updated: Apr 13, 2023
CVE: CVE-2005-2003
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:P/I:N/A:N

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
ultimate_php_board / ultimate_php_board	1.9.6_gold	1.9.6_gold.x

http://marc.info/?l=bugtraq&m=111893777504821&w=2
http://secunia.com/advisories/15732

Vulnerability Database

289,697

CVE-2005-2003