CVE-2007-5490 – Okul Otomasyon Portal 2.0 - SQL Injection

https://notcve.org/view.php?id=CVE-2007-5490

SQL injection vulnerability in default.asp in Okul Otomasyon Portal 2.0 allows remote attackers to execute arbitrary SQL commands via the id parameter. Vulnerabilidad de inyección SQL en default.asp en Okul Otomasyon Portal 2.0 permite a atacantes remotos ejecutar comandos SQL de su elección a través del parámetro id. • https://www.exploit-db.com/exploits/4539 http://secunia.com/advisories/27268 http://www.securityfocus.com/bid/26094 https://exchange.xforce.ibmcloud.com/vulnerabilities/37237 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •