cpe:/a:joomlahbs:com_lowcosthotels:_nil_ cpe:/a:joomlahbs:hotel_booking_reservation_system:_nil_ CVE-2008-5875 2009-01-08T14:30:11.140-05:00 2017-09-28T21:32:51.243-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2009-01-08T15:29:00.000-05:00 ALLOWS_OTHER_ACCESS BUGTRAQ 20081225 joomla com_lowcosthotels sql injection BID 32952 SREASON 4880 EXPLOIT-DB 7567 SQL injection vulnerability in the com_lowcosthotels component in the Hotel Booking Reservation System (aka HBS) for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a showhoteldetails action to index.php.