|
|
Family: CGI abuses --> Category: infos
Ultimate PHP Board admin_ip.php code injection Vulnerability Scan
Vulnerability Scan Summary
Checks for UPB
Detailed Explanation for this Vulnerability Test
The remote host is running Ultimate PHP Board (UPB).
There is a flaw in this version which may allow a possible hacker
to execute arbitrary code on this host, by sending a malformed
user-agent which contains PHP commands. Once the user-agent
has been sent, it is stored in the logs. When the administrator
of this web site will read the logs through admin_ip.php,
the code will be executed.
Solution : Upgrade to the latest version of this CGI
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|
