CVE-2006-3205

CVE-2006-3205 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

Ultimate PHP Board (UPB) 1.9.6 and earlier allows remote attackers to gain access via modified user_env, pass_env, power_env, and id_env parameters in a cookie, which comprise a persistent logon that does not vary across sessions.

Learn more about our User Device Pen Test.