RSS   Vulnerabilities for 'Com allhotels'   RSS

2009-01-08
 
CVE-2008-5874

CWE-89
 

 
Multiple SQL injection vulnerabilities in the Hotel Booking Reservation System (aka HBS) for Joomla! allow remote attackers to execute arbitrary SQL commands via the id parameter in a showhoteldetails action to index.php in the (1) com_allhotels or (2) com_5starhotels module. NOTE: some of these details are obtained from third party information.

 

 >>> Vendor: Joomlahbs 6 Products
Com tophotelmodule
Hotel booking reservation system
Com 5starhotels
Com allhotels
Com lowcosthotels
Com hbssearch


Copyright 2024, cxsecurity.com

 

Back to Top