Webyapar: Security Vulnerabilities
Multiple SQL injection vulnerabilities in Webyapar 2.0 allow remote attackers to execute arbitrary SQL commands via (1) the kat_id parameter to the default URI in a download action or (2) the id parameter to the default URI in a duyurular_detay action.
CVSS Score
5.8
EPSS Score
0.007
Published
2007-07-30