CVE-2009-1346

2009-04-20T14:30:00
ID CVE-2009-1346
Type cve
Reporter cve@mitre.org
Modified 2017-09-29T01:34:00

Description

SQL injection vulnerability in publico/ficha.php in NetHoteles 3.0 allows remote attackers to execute arbitrary SQL commands via the id_establecimiento parameter.