exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New

DataWatch Monarch Business Intelligence (BI) 5.1 SQL Injection

DataWatch Monarch Business Intelligence (BI) 5.1 SQL Injection
Posted Jul 31, 2012
Authored by Dionach

DataWatch Monarch Business Intelligence (BI) version 5.1 suffers from a remote blind SQL injection vulnerability.

tags | advisory, remote, sql injection
SHA-256 | b490b61cddfb1646f4adbb097c40441e7e7963d4b9bc0f254dde7e16ee03d28f
Download | Favorite | View

DataWatch Monarch Business Intelligence (BI) 5.1 SQL Injection

Change Mirror Download
DataWatch Monarch BI v5.1 admin section blind SQL injection 

Class:  Input Validation Error
Remote: Yes
Local:  No
Published: 26/06/2012
Credit:  Raymond Rizk of Dionach Limited (vulns@dionach.com)

Vulnerable: DataWatch Monarch BI v5.1

DataWatch's  Monarch BI client section is prone to a blind SQL injection vulnerability because it fails to sproperly sanitize user-supplied input before using it in an SQL query. 

An attacker may leverage these issues to access confidential data stored in the database.

DataWatch Monarch BI v5.1 is known to be vulnerable. Other versions may also be vulnerable.

TAttackers can use a browser to exploit this issue.

Vendor informed and a patch was released on 12/07/2012. Vendor recommends installing the latest security updates.
Login or Register to add favorites

File Archive:

March 2023

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Mar 1st
    16 Files
  • 2
    Mar 2nd
    13 Files
  • 3
    Mar 3rd
    15 Files
  • 4
    Mar 4th
    0 Files
  • 5
    Mar 5th
    0 Files
  • 6
    Mar 6th
    16 Files
  • 7
    Mar 7th
    31 Files
  • 8
    Mar 8th
    16 Files
  • 9
    Mar 9th
    13 Files
  • 10
    Mar 10th
    9 Files
  • 11
    Mar 11th
    0 Files
  • 12
    Mar 12th
    0 Files
  • 13
    Mar 13th
    10 Files
  • 14
    Mar 14th
    6 Files
  • 15
    Mar 15th
    17 Files
  • 16
    Mar 16th
    22 Files
  • 17
    Mar 17th
    13 Files
  • 18
    Mar 18th
    0 Files
  • 19
    Mar 19th
    0 Files
  • 20
    Mar 20th
    16 Files
  • 21
    Mar 21st
    13 Files
  • 22
    Mar 22nd
    5 Files
  • 23
    Mar 23rd
    6 Files
  • 24
    Mar 24th
    47 Files
  • 25
    Mar 25th
    0 Files
  • 26
    Mar 26th
    0 Files
  • 27
    Mar 27th
    50 Files
  • 28
    Mar 28th
    42 Files
  • 29
    Mar 29th
    7 Files
  • 30
    Mar 30th
    31 Files
  • 31
    Mar 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Site Links
News by Month
News Tags
Files by Month
File Tags
File Directory
About Us
History & Purpose
Contact Information
Terms of Service
Privacy Statement
Copyright Information
Services
Security Services
Hosting By
Rokasec
close