Netkamp Emlak Scripti - Multiple Input Validation Vulnerabilities

Author: GeFORC3
type: webapps
platform: asp
port: 
date_added: 2007-10-01  
date_updated: 2014-01-02  
verified: 1  
codes: CVE-2007-5181;OSVDB-37405  
tags:   
aliases:   
screenshot_url:   
application_url:   

raw file: 30624.txt  

source: https://www.securityfocus.com/bid/25875/info

Netkamp Emlak Scripti is prone to multiple input-validation vulnerabilities, including multiple HTML-injection issues and an SQL-injection issue, because the application fails to sanitize user-supplied input.

A successful exploit may allow an attacker to steal cookie-based authentication credentials, execute malicious script code, compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database.

http://www.example.com.com/script_path/detay.asp?ilan_id=[SQL]