CVE-2002-1820
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2002-1820
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
register.php in Ultimate PHP Board (UPB) 1.0 and 1.0b uses an administrative account Admin with a capital "A," but allows a remote attacker to impersonate the administrator by registering an account name of admin with a lower case "a."
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Ultimate PHP Board可注册第二个'admin'用户漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Ultimate PHP Board是一款开放源代码由PHP编写的WEB论坛程序。 Ultimate PHP Board允许存在两个'admin'帐户,远程攻击者可以利用这个漏洞可以冒充admin用户发言。 Ultimate PHP Board允许存在两个不同访问级别的'admin'帐户,在安装阶段可以注册一个'admin'帐户,它的权限为管理员级别,而安装完后,可以通过register.php又可以注册一个名为'admin'的帐户,而upb不会产生任何错误,但是这个'admin'却只有'member'组
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2002-1820
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2002-1820
请登录查看更多情报信息。
Same Patch Batch · n/a · 2005-06-28 · 220 CVEs total
| CVE-2002-1933 | Microsoft Terminal Services控制台屏幕保护锁住失败漏洞 | |
| CVE-2002-1920 | DataWizard FtpXQ远程缓冲区溢出漏洞 | |
| CVE-2002-1921 | Oracle MySQL 安全漏洞 | |
| CVE-2002-1922 | 多个Vbulletin跨站脚本攻击漏洞 | |
| CVE-2002-1923 | Oracle MySQL 安全漏洞 | |
| CVE-2002-1924 | APC PowerChute Plus不安全共享文件夹许可漏洞 | |
| CVE-2002-1925 | Tiny Personal Firewall本地拒绝服务攻击和IP伪造漏洞 | |
| CVE-2002-1926 | Stephen Ball File Manager Source.PHP目录遍历漏洞 | |
| CVE-2002-1927 | Aquonics文件管理器漏洞 | |
| CVE-2002-1928 | 602Pro LAN SUITE查看目录树漏洞 | |
| CVE-2002-1929 | PHP Arena PAFileDB Email To Friend跨站脚本漏洞 | |
| CVE-2002-1930 | AN HTTPD畸形SOCKS4请求远程缓冲区溢出漏洞 | |
| CVE-2002-1931 | PHP Arena PAFileDB搜索跨站脚本漏洞 | |
| CVE-2002-1932 | Microsoft Windows 2000/XP事件日志满未报警漏洞 | |
| CVE-2002-1944 | Motorola Surfboard 4200 cable modem拒绝服务漏洞 | |
| CVE-2002-1941 | Radiobird软件服务器4所有主机字段头缓冲区溢出漏洞 | |
| CVE-2002-1942 | Imatix Xitami 2.5 Beta远程拒绝服务攻击漏洞 | |
| CVE-2002-1943 | SafeTP被动模式内部IP地址揭示漏洞 | |
| CVE-2002-1940 | LCC-Win32编译程序存在内存泄露漏洞 | |
| CVE-2002-1945 | SmartMail服务器超大请求服务拒绝漏洞 |
Showing top 20 of 220 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8276
bettercap MySQL Server mysql_server.go integer coercion - CVE-2026-8275
bettercap zerogod IPP Service zerogod_ipp_primitives.go ippR - CVE-2026-8270
Open5GS SMF ogs_nas_parse_qos_rules denial of service - CVE-2026-8269
Open5GS SMF smf_nsmf_handle_create_sm_context denial of serv - CVE-2026-8268
Open5GS SMF OpenAPI_list_create denial of service
V. Comments for CVE-2002-1820
No comments yet