Online Hotel Booking System Pro 1.3 SQL Injection

Online Hotel Booking System Pro version 1.3 suffers from a remote SQL injection vulnerability.


MD5 | 71ae79c1a63d41c4233e62f577d93985

Download
====================================================================================================
| # Title     : Online Hotel Booking System Pro 1.3 Sql injection vulnerability                    |
| # Author    : indoushka                                                                          |
| # email     : [email protected]                                                           |
| # Tested on : windows 10 FranASSais V.(Pro)                                                        |
| # Version   : 1.3                                                                                |
| # Vendor    : https://codecanyon.net/item/online-hotel-booking-system-pro/4606514                |  
| # Dork      : "booking-failure.php?error_code="                                                  |
====================================================================================================

poc :


[+] Dorking Adegn Google Or Other Search Enggine 


[+] Use Payload : chambre.php?id=


http://www.riadbahiasalam.com/chambre.php?id= <====== inject her

Panel : http://www.riadbahiasalam.com/cp/index.php

Greetz :----------------------------------------------------------------------------------------
                                                                                               |
jericho * Larry W. Cashdollar * shadow0075 * djroot.dz *Gjoko 'LiquidWorm' Krstic              |
                                                                                               |
================================================================================================

Source: packetstormsecurity.com
Related Posts