CVE-2007-1971

Gazi Okul Sitesi 2007 - SQL Injection via fotokategori.asp Query String

Title source: llm

Description

SQL injection vulnerability in fotokategori.asp in Gazi Okul Sitesi 2007 allows remote attackers to execute arbitrary SQL commands via the query string.

Exploits (1)

exploitdb WORKING POC VERIFIED

by CoNqUeRoR · textwebappsasp

https://www.exploit-db.com/exploits/29817

View Code ZIP pw:eip

References (4)

Core 4

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb

http://osvdb.org/35266

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/23316

Third Party Advisory third-party-advisory x_refsource_sreason

http://securityreason.com/securityalert/2547

Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/464738/100/0/threaded

Scores

EPSS 0.0175

EPSS Percentile 82.8%

Details

Status published

Products (1)

gazi_okul_sitesi/gazi_okul_sitesi 2007

Published Apr 11, 2007

Tracked Since Feb 18, 2026