======================================== ====================================================================================================
| # Title : Online Hotel Booking System Pro 1.3 Sql injection vulnerability |
| # Author : indoushka |
| # email : indoushka4ever@gmail.com |
| # Tested on : windows 10 FranASSais V.(Pro) |
| # Version : 1.3 |
| # Vendor : https://codecanyon.net/item/online-hotel-booking-system-pro/4606514 |
| # Dork : "booking-failure.php?error_code=" |
====================================================================================================

poc :


[+] Dorking Adegn Google Or Other Search Enggine


[+] Use Payload : chambre.php?id=


http://www.riadbahiasalam.com/chambre.php?id= <====== inject her

Panel : http://www.riadbahiasalam.com/cp/index.php

Greetz :----------------------------------------------------------------------------------------
|
jericho * Larry W. Cashdollar * shadow0075 * djroot.dz *Gjoko 'LiquidWorm' Krstic |
|
================================================================================================