CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 4CVE-2010-4814 – BSI Advance Hotel Booking System 1.0 - SQL Injection
https://notcve.org/view.php?id=CVE-2010-4814
SQL injection vulnerability in index1.php in Best Soft Inc. (BSI) Advance Hotel Booking System 1.0 allows remote attackers to execute arbitrary SQL commands via the page parameter. Vulnerabilidad de inyección SQL en index1.php en Best Soft Inc. (BSI) Advance Hotel Booking System v1.0 permite a atacantes remotos ejecutar comandos SQL de su elección a través del parámetro "page". • https://www.exploit-db.com/exploits/15531 http://packetstormsecurity.org/files/view/95829/phpbsiahbs-sql.txt http://www.exploit-db.com/exploits/15531 http://www.securityfocus.com/bid/44854 https://exchange.xforce.ibmcloud.com/vulnerabilities/63268 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •