CVE-2006-2675

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
30/05/2006
Last modified:
03/04/2025

Description

PHP remote file inclusion vulnerability in ubbt.inc.php in UBBThreads 5.x and 6.x allows remote attackers to execute arbitrary PHP code via a URL in the (1) thispath or (2) configdir parameters.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:ubbcentral:ubb.threads:*:*:*:*:*:*:*:* 6.5.3 (including)
cpe:2.3:a:ubbcentral:ubb.threads:3.4:*:*:*:*:*:*:*
cpe:2.3:a:ubbcentral:ubb.threads:3.5:*:*:*:*:*:*:*
cpe:2.3:a:ubbcentral:ubb.threads:5.0:*:*:*:*:*:*:*
cpe:2.3:a:ubbcentral:ubb.threads:5.5.1:*:*:*:*:*:*:*
cpe:2.3:a:ubbcentral:ubb.threads:6.0:*:*:*:*:*:*:*
cpe:2.3:a:ubbcentral:ubb.threads:6.0.1:*:*:*:*:*:*:*
cpe:2.3:a:ubbcentral:ubb.threads:6.0.2:*:*:*:*:*:*:*
cpe:2.3:a:ubbcentral:ubb.threads:6.0.3:*:*:*:*:*:*:*
cpe:2.3:a:ubbcentral:ubb.threads:6.1:*:*:*:*:*:*:*
cpe:2.3:a:ubbcentral:ubb.threads:6.1.1:*:*:*:*:*:*:*
cpe:2.3:a:ubbcentral:ubb.threads:6.2:*:*:*:*:*:*:*
cpe:2.3:a:ubbcentral:ubb.threads:6.2.1:*:*:*:*:*:*:*
cpe:2.3:a:ubbcentral:ubb.threads:6.2.2:*:*:*:*:*:*:*
cpe:2.3:a:ubbcentral:ubb.threads:6.2.3:*:*:*:*:*:*:*