CVE-2018-25195 Wecodex Hotel CMS 1.0 SQL Injection via Admin Login

Wecodex Hotel CMS 1.0 contains an SQL injection vulnerability in the admin login functionality that allows unauthenticated attackers to bypass authentication by injecting SQL code. Attackers can submit malicious SQL payloads through the username parameter in POST requests to index.php with...

CVE-2018-25195

Wecodex Hotel CMS 1.0 contains an SQL injection in the admin login flow. The vulnerability allows unauthenticated attackers to bypass authentication by injecting SQL through the username field in a POST to index.php?action=processlogin, enabling extraction of sensitive data or unauthorized admin ...

Wecodex Hotel CMS SQL注入漏洞

Wecodex Hotel CMS is a hotel management system developed by Wecodex Corporation. Version 1.0 of Wecodex Hotel CMS has a SQL injection vulnerability. This vulnerability stems from insufficient validation of the username parameter input, which may lead to SQL injection attacks...

Wecodex Hotel CMS 'Admin Login' SQL Injection Vulnerability

Wecodex Hotel CMS is a management system. A SQL injection vulnerability exists in Wecodex Hotel CMS 'Admin Login', which can be exploited by an attacker to execute arbitrary SQL commands...

Wecodex Hotel CMS 1.0 SQL Injection

Exploit Title: Wecodex Hotel CMS 1.0 - 'Admin Login' SQL Injection Dork: N/A Date: 2018-05-23 Exploit Author: Azkan Mustafa AkkuA AkkuS Vendor : Wecodex Solutions Vendor Homepage: https://www.wecodex.com/item/view/hotel-management-system-in-php-and-mysql/7 Version: 1.0 Category: Webapps Tested on...

Wecodex Hotel CMS 1.0 - Admin Login SQL Injection

Wecodex Hotel CMS 1.0 - Admin Login SQL Injection Exploit Title: Wecodex Hotel CMS 1.0 - 'Admin Login' SQL Injection Dork: N/A Date: 2018-05-23 Exploit Author: Özkan Mustafa Akkuş AkkuS Vendor : Wecodex Solutions Vendor Homepage:...

A hotel CMS injection 0day-vulnerability warning-the black bar safety net

White-box in some sense, also TM is the individual force of life, the MVC framework let a person see uncomfortable. Test code: 1. http://www.xxx.com/index.php?m=liansuohotel&cityid=5 3%20and%2 0 1=2%20union%20select%2 0 1,concatusername,0x3a,password,3,4,5,6,7,8,9,1 0%20from%20zhunaadmin Copy the...

A hotel CMS sql inj 0day-vulnerability warning-the black bar safety net

White-box in some sense, also TM is the individual force of life, the MVC framework let a person see uncomfortable. poc: 1. index. php? m=liansuohotel&cityid=5 3%20and%2 0 1=2%20union%20select%2 0 1,concatusername,0x3a,password,3,4,5,6,7,8,9,1 0%20from%20zhunaadmin Copy the code Keywords: 1...