2 matches found
CVE-2009-4386
CVE-2009-4386 is a SQL injection vulnerability in the Venalsur Booking Centre Booking System for Hotels Group, specifically in hotel_tiempolibre_ext.php. When magic_quotes_gpc is enabled, remote attackers can manipulate the NoticiaID parameter and other vectors to execute arbitrary SQL commands. ...
CVE-2009-4386
creationtimestamp| type| source ---|---|--- 2009-12-11 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/10393...