CVE-2005-3201 Information
Feb 14, 2021
cve
Description
SQL injection vulnerability in news.php for Utopia News Pro (UNP) 1.1.3 when magic_quotes_gpc is disabled and register_globals is enabled allows remote attackers to execute arbitrary SQL via the newsid parameter.
Reference
http://marc.info/?l=bugtraq&m=112872691119874&w=2 http://rgod.altervista.org/utopia113.html http://secunia.com/advisories/17115/ http://securitytracker.com/id?1015016 http://www.osvdb.org/19942 http://www.securityfocus.com/bid/15028 http://www.utopiasoftware.net/ https://exchange.xforce.ibmcloud.com/vulnerabilities/22555
Share on: