vendor:
by:
Okulumun sitesi
N/A
CVSS
N/A
remote sql injection
CWE
Product Name:
Affected Version From:
Affected Version To:
Patch Exists: NO
Related CWE:
CPE:
Platforms Tested:
2007
Dumenci v19.1
The Okul Otomasyon Portal v2.0 is vulnerable to remote SQL injection. The injection address is http://site.com/default.asp?islem=1&id=[sql code]. An example of the SQL code to exploit this vulnerability is -1+union+select+0,1,id,baslik,4,5,6+from+haber.
Mitigation:
Unknown