Sql injection

2009-05-1812:00:00

PRIOn knowledge base

www.prio-n.com

9.1 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

28.0%

JSON

SQL injection vulnerability in hotel_habitaciones.php in Venalsur Booking Centre Booking System for Hotels Group 2.01 allows remote attackers to execute arbitrary SQL commands via the HotelID parameter.

CPENameOperatorVersion
booking_system_for_hotels_groupeq2.01

CPE	Name	Operator	Version
	booking_system_for_hotels_group	eq	2.01

References

secunia.com/advisories/32430

www.securityfocus.com/bid/32512

exchange.xforce.ibmcloud.com/vulnerabilities/46913

www.exploit-db.com/exploits/7253