CVE-2005-2030

Ultimate PHP Board (UPB) 1.9.6 GOLD - Info Disclosure

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2005-2030. PoCs published by Alberto Trivero.

AI-analyzed exploit summary This exploit decrypts weakly encrypted passwords in Ultimate PHP Board (UPB) <= 1.9.6 by leveraging a known weak encryption scheme. It retrieves and decrypts user passwords from the 'users.dat' file, either outputting results to a file or displaying a specific user's credentials.

Description

Ultimate PHP Board (UPB) 1.9.6 GOLD uses weak encryption for passwords in the users.dat file, which allows attackers to easily decrypt the passwords and gain privileges, possibly after exploiting CVE-2005-2005 to obtain users.dat.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Alberto Trivero · perlwebappsphp

https://www.exploit-db.com/exploits/25838

View Code ZIP pw:eip

This exploit decrypts weakly encrypted passwords in Ultimate PHP Board (UPB) <= 1.9.6 by leveraging a known weak encryption scheme. It retrieves and decrypts user passwords from the 'users.dat' file, either outputting results to a file or displaying a specific user's credentials.

Classification

Working Poc 100%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: Ultimate PHP Board (UPB) <= 1.9.6

No auth needed

Prerequisites: Access to the target's 'db/users.dat' file

MITRE ATT&CK

T1552 - Unsecured Credentials

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Core References

Mailing List mailing-list x_refsource_bugtraq

http://marc.info/?l=bugtraq&m=111893777504821&w=2

Exploit vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/13975

Scores

EPSS 0.0300

EPSS Percentile 85.6%

Details

Status published

Products (4)

ultimate_php_board/ultimate_php_board 1.8

ultimate_php_board/ultimate_php_board 1.8.2

ultimate_php_board/ultimate_php_board 1.9

ultimate_php_board/ultimate_php_board 1.9.6

Published Jun 16, 2005

Tracked Since Feb 18, 2026