CVE-2009-1346 in NetHoteles
Summary
SQL injection vulnerability in publico/ficha.php in NetHoteles 3.0 allows remote attackers to execute arbitrary SQL commands via the id_establecimiento parameter.
If you want to get best quality of vulnerability data, you may have to visit VulDB.
Reservation
04/20/2009
Disclosure
04/20/2009
Status
Confirmed
Entries
VulDB provides additional information and datapoints for this CVE:
| ID | Vulnerability | CWE | Exp | Cou | CVE |
|---|---|---|---|---|---|
| 47818 | Interguias NetHoteles CHAP ficha.php sql injection | 89 | Proof-of-Concept | Not defined | CVE-2009-1346 |