Myupb Ultimate_php_board
4 CVEs affecting Myupb Ultimate_php_board. Latest disclosed: 2025-10-16. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-61540 | Medium | 6.5 | 2025-10-16 | SQL injection vulnerability in Ultimate PHP Board 2.2.7 via the username field in lostpassword.php. |
CVE-2025-61539 | Medium | 6.1 | 2025-10-16 | Cross site scripting (XSS) vulnerability in Ultimate PHP Board 2.2.7 via the u_name parameter in lostpassword.php. |
CVE-2015-2217 | | 2015-03-10 | Multiple cross-site scripting (XSS) vulnerabilities in Ultimate PHP Board (aka myUPB) before 2.2.8 allow remote attackers to inject arbitrary web script or HTM… | |
CVE-2003-0395 | | 2003-07-02 | Ultimate PHP Board (UPB) 1.9 allows remote attackers to execute arbitrary PHP code with UPB administrator privileges via an HTTP request containing the code in… |