Lucene search
K

117 matches found

Cvelist
Cvelist
added 2012/08/14 9:0 p.m.16 views

CVE-2012-4325

Cross-site request forgery CSRF vulnerability in upload/users.php in Utopia News Pro UNP 1.4.0 and earlier allows remote attackers to hijack the authentication of administrators for requests that add administrator accounts...

7.1AI score0.01073EPSS
Exploits1References3
0day.today
0day.today
added 2012/04/08 12:0 a.m.24 views

Utopia News Pro 1.4.0 <= CSRF Add Admin Vulnerability

Exploit for php platform in category web applications Exploit Title: Utopia News Pro 1.4.0 Greetz Dr.WEP , JIKO , ahwak2000 , RENO , ABU NWAF , Dr.HAiL , snc0pe , 020 JaBrOt HaCkEr , alkaseer20 , SadHaCkEr , Cyber Code , aircrack -ng...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2012/04/08 12:0 a.m.13 views

Utopia News Pro 1.4.0 - Cross-Site Request Forgery (Add Admin)

Utopia News Pro 1.4.0 - Cross-Site Request Forgery Add Admin Exploit Title: Utopia News Pro 1.4.0 Greetz Dr.WEP , JIKO , ahwak2000 , RENO , ABU NWAF , Dr.HAiL , snc0pe , 020 JaBrOt HaCkEr , alkaseer20 , SadHaCkEr , Cyber Code , aircrack -ng All Frie...

0.9AI score
Exploits0
Exploit DB
Exploit DB
added 2012/04/08 12:0 a.m.30 views

Utopia News Pro 1.4.0 - Cross-Site Request Forgery (Add Admin)

Exploit Title: Utopia News Pro 1.4.0 Greetz Dr.WEP , JIKO , ahwak2000 , RENO , ABU NWAF , Dr.HAiL , snc0pe , 020 JaBrOt HaCkEr , alkaseer20 , SadHaCkEr , Cyber Code , aircrack -ng All FriendS...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2009/02/22 12:0 a.m.20 views

Blue Utopia Local File Inclusion

--------------------------------------------------------------------------------------------- scriptname: Blue Utopia all version Vendor: http://blueutopia.com/ vuln type: Local File Inclusion Vulnerability Author: PLATEN contact: PLATEN.SecureatGmail.com...

Exploits0
exploitpack
exploitpack
added 2009/02/22 12:0 a.m.12 views

Blue Utopia - index.php Local File Inclusion

Blue Utopia - index.php Local File Inclusion source: https://www.securityfocus.com/bid/33851/info Blue Utopia is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to view and execute arbitrary local...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2009/02/22 12:0 a.m.22 views

Blue Utopia - &#039;index.php&#039; Local File Inclusion

source: https://www.securityfocus.com/bid/33851/info Blue Utopia is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to view and execute arbitrary local files in the context of the webserver process...

7.4AI score
Exploits0
Prion
Prion
added 2008/04/11 7:5 p.m.10 views

Sql injection

SQL injection vulnerability in puarcade.class.php 2.2 and earlier in the Pragmatic Utopia PU Arcade compuarcade component for Joomla! allows remote attackers to execute arbitrary SQL commands via the gid parameter to index.php...

7.5CVSS9.1AI score0.01002EPSS
Exploits1References5Affected Software1
exploitpack
exploitpack
added 2008/04/09 12:0 a.m.14 views

Pragmatic Utopia PU Arcade 2.2 - gid SQL Injection

Pragmatic Utopia PU Arcade 2.2 - gid SQL Injection source: https://www.securityfocus.com/bid/28701/info PU Arcade is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker ...

1AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 2008/01/04 11:46 a.m.2 views

CVE-2007-6663

SQL injection vulnerability in 1 Puarcade.php and 2 PUarcade.html.php in Pragmatic Utopia PU Arcade compuarcade 2.0.3, 2.1.2, and 2.1.3 Beta component for Joomla! allows remote attackers to execute arbitrary SQL commands via the fid parameter to index.php...

7.5CVSS6.3AI score0.02053EPSS
Exploits1References12
Prion
Prion
added 2008/01/04 11:46 a.m.10 views

Sql injection

SQL injection vulnerability in 1 Puarcade.php and 2 PUarcade.html.php in Pragmatic Utopia PU Arcade compuarcade 2.0.3, 2.1.2, and 2.1.3 Beta component for Joomla! allows remote attackers to execute arbitrary SQL commands via the fid parameter to index.php...

7.5CVSS9.1AI score0.02053EPSS
Exploits1References10Affected Software1
NVD
NVD
added 2008/01/04 11:46 a.m.12 views

CVE-2007-6663

SQL injection vulnerability in 1 Puarcade.php and 2 PUarcade.html.php in Pragmatic Utopia PU Arcade compuarcade 2.0.3, 2.1.2, and 2.1.3 Beta component for Joomla! allows remote attackers to execute arbitrary SQL commands via the fid parameter to index.php...

7.5CVSS8.4AI score0.02053EPSS
Exploits1References10
CVE
CVE
added 2008/01/04 11:0 a.m.38 views

CVE-2007-6663

CVE-2007-6663 is a SQL injection in Pragmatic Utopia PU Arcade (com_puarcade) for Joomla! versions 2.0.3, 2.1.2, and 2.1.3 Beta. It allows remote attackers to execute arbitrary SQL commands via the fid parameter to index.php. Root cause: improper handling of the fid input leading to SQL injection...

7.5CVSS8.4AI score0.02053EPSS
Exploits1References10Affected Software1
exploitpack
exploitpack
added 2007/12/31 12:0 a.m.10 views

Joomla! Component PU Arcade 2.1.3 - SQL Injection

Joomla! Component PU Arcade 2.1.3 - SQL Injection Joomla Component PU Arcade Remote SQL Injection Exploit AUTHOR : HouSSamix of H-T TeaM We are HouSSamix ToXiC350 CoNaN HOME : http://no-hack.net Script : PU Arcade Joomla Component Tested in version 2.0.3 & 2.1.3 Beta Download :...

0.5AI score
Exploits0
Prion
Prion
added 2007/06/19 9:30 p.m.23 views

Cross site scripting

Cross-site scripting XSS vulnerability in login.php in Utopia News Pro 1.4.0 allows remote attackers to inject arbitrary web script or HTML via the password parameter...

2.6CVSS6.3AI score0.01336EPSS
Exploits2References8Affected Software1
NVD
NVD
added 2007/06/19 9:30 p.m.27 views

CVE-2007-3129

Cross-site scripting XSS vulnerability in login.php in Utopia News Pro 1.4.0 allows remote attackers to inject arbitrary web script or HTML via the password parameter...

2.6CVSS5.8AI score0.01336EPSS
Exploits2References8
CVE
CVE
added 2007/06/19 9:0 p.m.65 views

CVE-2007-3129

CVE-2007-3129 concerns an XSS vulnerability in Utopia News Pro 1.4.0, specifically in login.php where the password parameter can be exploited to inject script/HTML. The vulnerability is described across multiple sources (NVD, CVE records, and Full-Disclosure material), with exploitation details i...

2.6CVSS5.8AI score0.01336EPSS
Exploits2References8Affected Software1
Cvelist
Cvelist
added 2007/06/19 9:0 p.m.31 views

CVE-2007-3129

Cross-site scripting XSS vulnerability in login.php in Utopia News Pro 1.4.0 allows remote attackers to inject arbitrary web script or HTML via the password parameter...

5.8AI score0.01336EPSS
Exploits2References8
Packet Storm
Packet Storm
added 2007/06/19 12:0 a.m.41 views

utopia-xss.txt

netVigilance Security Advisory 34 Utopia News Pro version 1.4.0 XSS Attack Vulnerability Description: Utopia News Pro is a powerful and scalable news management system for any web site. News Pro, written in PHP and backed by the renowned MySQL database system, Utopia Software's News Pro is an ide...

2.6CVSS6.7AI score0.01336EPSS
Exploits2
securityvulns
securityvulns
added 2007/06/18 12:0 a.m.153 views

[Full-disclosure] Utopia News Pro version 1.4.0 XSS Attack Vulnerability

netVigilance Security Advisory 34 Utopia News Pro version 1.4.0 XSS Attack Vulnerability Description: Utopia News Pro is a powerful and scalable news management system for any web site. News Pro, written in PHP and backed by the renowned MySQL database system, Utopia Software's News Pro is an ide...

2.6CVSS0.1AI score0.01336EPSS
Exploits2
Rows per page
Query Builder