CVE-2019-6497

Publication date

2019-01-19 17:00:00

Family

mitre

State

PUBLISHED

Description

Hotels_Server through 2018-11-05 has SQL Injection via the controller/fetchpwd.php username parameter.