CRITICAL🇬🇧 English

CVE-2002-1820

CVSS 9.8v3.1pub. 2002-12-31upd. 2026-04-16

register.php in Ultimate PHP Board (UPB) 1.0 and 1.0b uses an administrative account Admin with a capital "A," but allows a remote attacker to impersonate the administrator by registering an account name of admin with a lower case "a."

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Ultimate PHP Board Project Ultimate PHP Board

    APP
    Ultimate Php Board Project
    1.0
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje
CVE-2002-1820 — CRITICAL 9.8 | CVEbaza.pl