header-logo
Suggest Exploit
vendor:
egegen turkish script
by:
FormatXFormaT
7.5
CVSS
HIGH
SQL Injection
89
CWE
Product Name: egegen turkish script
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: NO
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2020

egegen turkish script SQL Injection Vulnerability

egegen turkish script is vulnerable to SQL Injection. An attacker can inject malicious SQL queries via the 'id' parameter in the 'urunDetay' page. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code.

Mitigation:

Input validation should be used to prevent SQL injection attacks. All user-supplied input should be validated and filtered before being used in SQL queries.
Source

Exploit-DB raw data:

=-==-==-==-==-==-==-==T==K==R==D==-==-==-==-==-==-==-==-==-==-==-==-=
egegen turkish script SQL Injection Vulnerability

script: egegen

Site script: http://www.egegen.com/


=-==-==-==-==-==-==-==T==K==R==D==-==-==-==-==-==-==-==-==-==-==-==-=

Found by: FormatXFormaT

contact: hun4r@yahoo.com

Forum: Tkurd.com

=-==-==-==-==-==-==-==T==K==R==D==-==-==-==-==-==-==-==-==-==-==-==-=

Dork:
;)

=-==-==-==-==-==-==-==T==K==R==D==-==-==-==-==-==-==-==-==-==-==-==-=

Exploit:
http://www.localhost.com/index.php?page=urunDetay&id=[sql]
http://www.localhost.com/index.php?page=urunDetay&id=[sql]

Special Thanks: Angry-Boy , Neo , All Tkurd Memebers.

=-==-==-==-==-==-==-==T==K==R==D==-==-==-==-==-==-==-==-==-==-==-==-=