Joomla Modern Booking - SQL Injection

vendor:

Modern Booking

by:

Hamed Izadi

7,5

CVSS

HIGH

SQL Injection

CWE

Product Name: Modern Booking

Affected Version From: 1.0

Affected Version To: 1.0

Patch Exists: N/A

Related CWE: N/A

CPE: a:unikalus:modern_booking

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: Ubuntu

2017

Joomla Modern Booking – SQL Injection

The Joomla Modern Booking extension is vulnerable to SQL injection. The 'coupon' parameter is vulnerable to SQL injection when passed to the 'saveorder' task. An attacker can exploit this vulnerability to execute arbitrary SQL commands on the underlying database.

Mitigation:

Developers should ensure that user-supplied input is properly sanitized and validated before being used in SQL queries.

Source

Exploit-DB raw data:

###############################################################################################
# Exploit Title: Joomla Modern Booking  - SQL Injection

               # Author: [ Hamed Izadi ]

                        #IRAN

# Vendor Homepage :
https://extensions.joomla.org/extensions/extension/vertical-markets/booking-a-reservations/modern-booking/
# Vendor Homepage : https://www.unikalus.com/
# Category: [ Webapps ]
# Tested on: [ Ubuntu ]
# Versions: 1.0
# Date: March 22, 2017


# PoC:
# coupon Parameter Vulnerable To SQLi

# Demo:
# https://server/modern-booking-slots?task=saveorder&coupon=test"&start=&option=com_modern_booking


#  L u Arg
###############################################################################################