Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-5875

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-5875
Last Modified 10 Jul 2009 01:28:30
Published 08 Jan 2009 02:30:11
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-5875

Summary

SQL injection vulnerability in the com_lowcosthotels component in the Hotel Booking Reservation System (aka HBS) for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a showhoteldetails action to index.php.

Vulnerable Systems

Application

  • Joomlahbs Com Lowcosthotels Nil

  • Joomlahbs Hotel Booking Reservation System Nil


References

BID - 32952

BUGTRAQ - 20081225 joomla com_lowcosthotels sql injection

MILW0RM - 7567

SREASON - 4880


Last Updated: 27 May 2016 10:48:58