CVE-2008-3266

The CVE-2008-3266 entry describes a SQL injection vulnerability in the SoftAcid Hotel Reservation System (HRS) Multi, specifically in picture_pic_bv.asp via the key parameter. The root cause is improper input handling that allows an attacker to terminate the existing query and inject arbitrary SQ...

CVE-2008-3266

SQL injection vulnerability in picturepicbv.asp in SoftAcid Hotel Reservation System HRS Multi allows remote attackers to execute arbitrary SQL commands via the key parameter...

HRS Multi - key Blind SQL Injection

HRS Multi - key Blind SQL Injection !/usr/bin/perl use LWP::UserAgent; use Getopt::Long; if!$ARGV1 print " \n"; print " Viva IslaMe Viva IslaMe \n"; print " HRS Multi Blind SQL Injection Exploit \n"; print " picturepicbv.asp key \n"; print " Author: Mr.SQL \n"; print " EMAIL : [email protected] \n";...

HRS Multi (picture_pic_bv.asp key) Blind SQL Injection Exploit

Exploit for unknown platform in category web applications ============================================================== HRS Multi picturepicbv.asp key Blind SQL Injection Exploit ============================================================== !/usr/bin/perl use LWP::UserAgent; use Getopt::Long;...