This is a writeup describing a SQL injection vulnerability in HotelCMS with Booking Engine. The exploit details a vulnerable parameter in the URL path but does not include functional exploit code.
Classification
Writeup 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Theoretical
Target:HotelCMS with Booking Engine
No auth needed
Prerequisites:Access to the vulnerable web application