Tns-Voyages Script version 1.7.1 suffers from a remote SQL injection vulnerability.
45bae1c6424f2044e6cc1f4b9970750ce5fd63fa497308b038f82330f0d107b7
========================================================================
| # Title : Tns-Voyages Script 1.7.1 SQL Injection Vulnerability
| # Author : indoushka
| # email : indoushka4ever@gmail.com
| # Tested on: windows 8.1 Français V.(Pro)
| # Vendor : http://www.tuninfoforyou.com/
========================================================================
Dork : sejour-details.php?sejourId= /
poc :
http://www.africana-voyages.com/sejour-details.php?sejourId=66 (inject her)
http://www.etsw-ltd.com/sejour-details.php?sejourId=56 (inject her)
http://www.manel-voyages.com/sejour-details.php?sejourId=56 (inject her)
Greetz :
jericho http://attrition.org & http://www.osvdb.org/ * http://packetstormsecurity.com * Larry W. Cashdollar*
Hussin-X *D4NB4R * ViRuS_Ra3cH * yasMouh * https://www.corelan.be
---------------------------------------------------------------------------------------------------------------