Sql injection

2019-06-0721:29:00

PRIOn knowledge base

www.prio-n.com

9.9 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

52.2%

HotelDruid before v2.3.1 has SQL Injection via the /visualizza_tabelle.php anno parameter.

CPENameOperatorVersion
hoteldruidlt2.3.1

CPE	Name	Operator	Version
	hoteldruid	lt	2.3.1

References

www.hoteldruid.com/en/download.html

metamorfosec.com/Files/Advisories/METS-2019-007-A_SQL_Injection_in_HotelDruid_before_v2.3.1.txt