Turkish Real Estate Sites Sql İnjection

2019.09.12

efeb3y (TR)

Risk: Medium

Local: No

Remote: Yes

CVE: N/A

CWE: N/A

Dork: inurl:template/default/print.php?id=

sql injection dork: inurl:template/default/print.php?id=

demo : http://www.bizemlak.net/template/default/print.php?id=702

example vulnerable sites : http://www.bizemlak.net/template/default/print.php?id=702

admin panel : http://www.bizemlak.net/admin/login.php

example sql database error : "SQL_ERROR You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ''702''' at line 1"

See this note in RAW Version

Vote for this issue:

100%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

Turkish Real Estate Sites Sql İnjection

Dork: inurl:template/default/print.php?id=

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.