117 matches found
CVE-2012-4325
Cross-site request forgery CSRF vulnerability in upload/users.php in Utopia News Pro UNP 1.4.0 and earlier allows remote attackers to hijack the authentication of administrators for requests that add administrator accounts...
Utopia News Pro 1.4.0 <= CSRF Add Admin Vulnerability
Exploit for php platform in category web applications Exploit Title: Utopia News Pro 1.4.0 Greetz Dr.WEP , JIKO , ahwak2000 , RENO , ABU NWAF , Dr.HAiL , snc0pe , 020 JaBrOt HaCkEr , alkaseer20 , SadHaCkEr , Cyber Code , aircrack -ng...
Utopia News Pro 1.4.0 - Cross-Site Request Forgery (Add Admin)
Utopia News Pro 1.4.0 - Cross-Site Request Forgery Add Admin Exploit Title: Utopia News Pro 1.4.0 Greetz Dr.WEP , JIKO , ahwak2000 , RENO , ABU NWAF , Dr.HAiL , snc0pe , 020 JaBrOt HaCkEr , alkaseer20 , SadHaCkEr , Cyber Code , aircrack -ng All Frie...
Utopia News Pro 1.4.0 - Cross-Site Request Forgery (Add Admin)
Exploit Title: Utopia News Pro 1.4.0 Greetz Dr.WEP , JIKO , ahwak2000 , RENO , ABU NWAF , Dr.HAiL , snc0pe , 020 JaBrOt HaCkEr , alkaseer20 , SadHaCkEr , Cyber Code , aircrack -ng All FriendS...
Blue Utopia Local File Inclusion
--------------------------------------------------------------------------------------------- scriptname: Blue Utopia all version Vendor: http://blueutopia.com/ vuln type: Local File Inclusion Vulnerability Author: PLATEN contact: PLATEN.SecureatGmail.com...
Blue Utopia - index.php Local File Inclusion
Blue Utopia - index.php Local File Inclusion source: https://www.securityfocus.com/bid/33851/info Blue Utopia is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to view and execute arbitrary local...
Blue Utopia - 'index.php' Local File Inclusion
source: https://www.securityfocus.com/bid/33851/info Blue Utopia is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to view and execute arbitrary local files in the context of the webserver process...
Sql injection
SQL injection vulnerability in puarcade.class.php 2.2 and earlier in the Pragmatic Utopia PU Arcade compuarcade component for Joomla! allows remote attackers to execute arbitrary SQL commands via the gid parameter to index.php...
Pragmatic Utopia PU Arcade 2.2 - gid SQL Injection
Pragmatic Utopia PU Arcade 2.2 - gid SQL Injection source: https://www.securityfocus.com/bid/28701/info PU Arcade is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker ...
CVE-2007-6663
SQL injection vulnerability in 1 Puarcade.php and 2 PUarcade.html.php in Pragmatic Utopia PU Arcade compuarcade 2.0.3, 2.1.2, and 2.1.3 Beta component for Joomla! allows remote attackers to execute arbitrary SQL commands via the fid parameter to index.php...
Sql injection
SQL injection vulnerability in 1 Puarcade.php and 2 PUarcade.html.php in Pragmatic Utopia PU Arcade compuarcade 2.0.3, 2.1.2, and 2.1.3 Beta component for Joomla! allows remote attackers to execute arbitrary SQL commands via the fid parameter to index.php...
CVE-2007-6663
SQL injection vulnerability in 1 Puarcade.php and 2 PUarcade.html.php in Pragmatic Utopia PU Arcade compuarcade 2.0.3, 2.1.2, and 2.1.3 Beta component for Joomla! allows remote attackers to execute arbitrary SQL commands via the fid parameter to index.php...
CVE-2007-6663
CVE-2007-6663 is a SQL injection in Pragmatic Utopia PU Arcade (com_puarcade) for Joomla! versions 2.0.3, 2.1.2, and 2.1.3 Beta. It allows remote attackers to execute arbitrary SQL commands via the fid parameter to index.php. Root cause: improper handling of the fid input leading to SQL injection...
Joomla! Component PU Arcade 2.1.3 - SQL Injection
Joomla! Component PU Arcade 2.1.3 - SQL Injection Joomla Component PU Arcade Remote SQL Injection Exploit AUTHOR : HouSSamix of H-T TeaM We are HouSSamix ToXiC350 CoNaN HOME : http://no-hack.net Script : PU Arcade Joomla Component Tested in version 2.0.3 & 2.1.3 Beta Download :...
Cross site scripting
Cross-site scripting XSS vulnerability in login.php in Utopia News Pro 1.4.0 allows remote attackers to inject arbitrary web script or HTML via the password parameter...
CVE-2007-3129
Cross-site scripting XSS vulnerability in login.php in Utopia News Pro 1.4.0 allows remote attackers to inject arbitrary web script or HTML via the password parameter...
CVE-2007-3129
CVE-2007-3129 concerns an XSS vulnerability in Utopia News Pro 1.4.0, specifically in login.php where the password parameter can be exploited to inject script/HTML. The vulnerability is described across multiple sources (NVD, CVE records, and Full-Disclosure material), with exploitation details i...
CVE-2007-3129
Cross-site scripting XSS vulnerability in login.php in Utopia News Pro 1.4.0 allows remote attackers to inject arbitrary web script or HTML via the password parameter...
utopia-xss.txt
netVigilance Security Advisory 34 Utopia News Pro version 1.4.0 XSS Attack Vulnerability Description: Utopia News Pro is a powerful and scalable news management system for any web site. News Pro, written in PHP and backed by the renowned MySQL database system, Utopia Software's News Pro is an ide...
[Full-disclosure] Utopia News Pro version 1.4.0 XSS Attack Vulnerability
netVigilance Security Advisory 34 Utopia News Pro version 1.4.0 XSS Attack Vulnerability Description: Utopia News Pro is a powerful and scalable news management system for any web site. News Pro, written in PHP and backed by the renowned MySQL database system, Utopia Software's News Pro is an ide...