CVE-2012-4325

Publication date

2012-08-14 21:00:00

Family

mitre

State

PUBLISHED

Description

Cross-site request forgery (CSRF) vulnerability in upload/users.php in Utopia News Pro (UNP) 1.4.0 and earlier allows remote attackers to hijack the authentication of administrators for requests that add administrator accounts.