CVE-2006-3206

CVE-2006-3206 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:N

register.php in Ultimate PHP Board (UPB) 1.9.6 and earlier allows remote attackers to create arbitrary accounts via the "[NR]" sequence in the signature field, which is used to separate multiple records.

Learn more about our Web Application Penetration Testing UK.