Vulnerability Details CVE-2008-6809
SQL injection vulnerability in hotel_habitaciones.php in Venalsur Booking Centre Booking System for Hotels Group 2.01 allows remote attackers to execute arbitrary SQL commands via the HotelID parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 39.3%
CVSS Severity
CVSS v2 Score 7.5
References
- http://secunia.com/advisories/32430
- http://www.securityfocus.com/bid/32512
- https://exchange.xforce.ibmcloud.com/vulnerabilities/46913
- https://www.exploit-db.com/exploits/7253
- http://secunia.com/advisories/32430
- http://www.securityfocus.com/bid/32512
- https://exchange.xforce.ibmcloud.com/vulnerabilities/46913
- https://www.exploit-db.com/exploits/7253
Products affected by CVE-2008-6809
-
cpe:2.3:a:bookingcentre:booking_system_for_hotels_group:2.01