vendor:
egegen turkish script
by:
FormatXFormaT
7.5
CVSS
HIGH
SQL Injection
89
CWE
Product Name: egegen turkish script
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: NO
Related CWE: N/A
CPE: N/A
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2020
egegen turkish script SQL Injection Vulnerability
egegen turkish script is vulnerable to SQL Injection. An attacker can inject malicious SQL queries via the 'id' parameter in the 'urunDetay' page. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code.
Mitigation:
Input validation should be used to prevent SQL injection attacks. All user-supplied input should be validated and filtered before being used in SQL queries.