Description
Multiple SQL injection vulnerabilities in Oto Galeri Sistemi 1.0 allow remote attackers to execute arbitrary SQL commands via the (1) arac parameter to carsdetail.asp and the (2) marka parameter to twohandscars.asp.
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by DeadLy DeMon · textwebappsasp
https://www.exploit-db.com/exploits/15777
References (4)
Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/64210
Exploit exploit
x_refsource_exploit-db
http://www.exploit-db.com/exploits/15777
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/45513
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/42706
Scores
EPSS
0.0024
EPSS Percentile
47.5%
Details
CWE
CWE-89
Status
published
Products (1)
iskenderaltuntas/oto_galeri_sistemi
1.0
Published
Dec 29, 2010
Tracked Since
Feb 18, 2026