Sql injection

2009-04-2014:30:00

PRIOn knowledge base

www.prio-n.com

9.1 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

37.7%

JSON

SQL injection vulnerability in publico/ficha.php in NetHoteles 3.0 allows remote attackers to execute arbitrary SQL commands via the id_establecimiento parameter.

CPENameOperatorVersion
nethoteleseq3.0

CPE	Name	Operator	Version
	nethoteles	eq	3.0

References

osvdb.org/53814

secunia.com/advisories/34743

www.securityfocus.com/bid/34561

exchange.xforce.ibmcloud.com/vulnerabilities/49897

www.exploit-db.com/exploits/8457