2 matches found
Sql injection
Multiple SQL injection vulnerabilities in the Hotel Booking Reservation System aka HBS or comhbssearch component for Joomla! allow remote attackers to execute arbitrary SQL commands via the 1 hid, 2 id, and 3 rid parameters to longDesc.php, and the hid parameter to 4 detail.php, 5 detail1.php, 6...
CVE-2008-5865
CVE-2008-5865 affects the com_hbssearch component (Hotel Booking Reservation System, aka HBS) version 1.0 in Joomla! 1.0.0. The vulnerability is an SQL injection via the r_type parameter in a showhoteldetails action to index.php, allowing remote attackers to execute arbitrary SQL commands. The pr...