← CVECheck
HomeVulnerabilities

CVE-2003-0395 — HIGH severity vulnerability (Ultimate PHP Board (UPB) 1.9 allows remote attackers to exec)

Ultimate PHP Board (UPB) 1.9 allows remote attackers to execute arbitrary PHP code with UPB administrator privileges via an HTTP request containing the code in the User-Agent header, which is executed when the administrator executes admin_iplog.php.

CVE IDCVE-2003-0395
SeverityHIGH
CVSS score7.5
CVSS vectorAV:N/AC:L/Au:N/C:P/I:P/A:P
CWECWE-94
StatusModified
Published2003-07-02
Last modified2026-04-16
DescriptionUltimate PHP Board (UPB) 1.9 allows remote attackers to execute arbitrary PHP code with UPB administrator privileges via an HTTP request containing the code in the User-Agent header, which is executed when the administrator executes admin_iplog.php.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →