37 matches found
EUVD-2005-3200
Malware in sbrugna...
EUVD-2005-3199
Malware in sbrugna...
EUVD-2005-4218
Malware in sbrugna...
EUVD-2012-4269
Malware in sbrugna...
EUVD-2007-3121
Malware in sbrugna...
Utopia News Pro 1.1.3 footer.php Multiple Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/15027/info Utopia News Pro is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to...
Utopia News Pro <= 1.1.3 (news.php) SQL Injection Exploit
No description provided by source. ?php bif magic quotes off -SQL INJECTION: /str0ke 3.10 07/10/2005 utopiaxpl.php Utopia News Pro 1.1.3 possibly prior versions SQL Injection / Administrative credentials disclosure by rgod site: http://rgod.altervista.org make these changes in php.ini if you have...
Utopia News Pro <= 1.4.0 - CSRF Add Admin Vulnerability
No description provided by source. Exploit Title: Utopia News Pro 1.4.0 = CSRF Add Admin Vulnerability Date: 7/4/2012 Author: Dr.NaNo Software Link: http://www.utopiasoftware.net/newspro/dl.php?filename=newspro140b.zip&mirror=1 Version: 1.4.0 Tested on: Linux-Red-Hat Google Dork: Powered By Utopi...
CVE-2012-4325
Cross-site request forgery CSRF vulnerability in upload/users.php in Utopia News Pro UNP 1.4.0 and earlier allows remote attackers to hijack the authentication of administrators for requests that add administrator accounts...
Cross site request forgery (csrf)
Cross-site request forgery CSRF vulnerability in upload/users.php in Utopia News Pro UNP 1.4.0 and earlier allows remote attackers to hijack the authentication of administrators for requests that add administrator accounts...
CVE-2012-4325
Cross-site request forgery CSRF vulnerability in upload/users.php in Utopia News Pro UNP 1.4.0 and earlier allows remote attackers to hijack the authentication of administrators for requests that add administrator accounts...
CVE-2012-4325
CVE-2012-4325 is a CSRF vulnerability in UNP (Utopia News Pro) affecting 1.4.0 and earlier, enabling remote attackers to hijack administrators’ sessions by sending requests that add administrator accounts via upload/users.php. The connected sources confirm the affected product/version and the adm...
Utopia News Pro 1.4.0 - Cross-Site Request Forgery (Add Admin)
Utopia News Pro 1.4.0 - Cross-Site Request Forgery Add Admin Exploit Title: Utopia News Pro 1.4.0 Greetz Dr.WEP , JIKO , ahwak2000 , RENO , ABU NWAF , Dr.HAiL , snc0pe , 020 JaBrOt HaCkEr , alkaseer20 , SadHaCkEr , Cyber Code , aircrack -ng All Frie...
Utopia News Pro 1.4.0 <= CSRF Add Admin Vulnerability
Exploit for php platform in category web applications Exploit Title: Utopia News Pro 1.4.0 Greetz Dr.WEP , JIKO , ahwak2000 , RENO , ABU NWAF , Dr.HAiL , snc0pe , 020 JaBrOt HaCkEr , alkaseer20 , SadHaCkEr , Cyber Code , aircrack -ng...
Utopia News Pro 1.4.0 - Cross-Site Request Forgery (Add Admin)
Exploit Title: Utopia News Pro 1.4.0 Greetz Dr.WEP , JIKO , ahwak2000 , RENO , ABU NWAF , Dr.HAiL , snc0pe , 020 JaBrOt HaCkEr , alkaseer20 , SadHaCkEr , Cyber Code , aircrack -ng All FriendS...
Cross site scripting
Cross-site scripting XSS vulnerability in login.php in Utopia News Pro 1.4.0 allows remote attackers to inject arbitrary web script or HTML via the password parameter...
CVE-2007-3129
Cross-site scripting XSS vulnerability in login.php in Utopia News Pro 1.4.0 allows remote attackers to inject arbitrary web script or HTML via the password parameter...
CVE-2007-3129
CVE-2007-3129 concerns an XSS vulnerability in Utopia News Pro 1.4.0, specifically in login.php where the password parameter can be exploited to inject script/HTML. The vulnerability is described across multiple sources (NVD, CVE records, and Full-Disclosure material), with exploitation details i...
CVE-2007-3129
Cross-site scripting XSS vulnerability in login.php in Utopia News Pro 1.4.0 allows remote attackers to inject arbitrary web script or HTML via the password parameter...
utopia-xss.txt
netVigilance Security Advisory 34 Utopia News Pro version 1.4.0 XSS Attack Vulnerability Description: Utopia News Pro is a powerful and scalable news management system for any web site. News Pro, written in PHP and backed by the renowned MySQL database system, Utopia Software's News Pro is an ide...