Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-0744

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-0744
Last Modified 05 Sep 2008 05:35:52
Published 12 Feb 2008 09:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-0744

Summary

SQL injection vulnerability in user_login.asp in PreProjects.com Pre Hotels & Resorts Management System allows remote attackers to execute arbitrary SQL commands via the login page.

Vulnerable Systems

Application

  • Preprojects.com Pre Hotels %26 Resorts Management System


References

XF - prehotel-login-sql-injection(39935)

BID - 27450

BUGTRAQ - 20080124 Pre Hotel and Resorts reservation portal login bypass

SREASON - 3644


Last Updated: 27 May 2016 10:46:54