Fullaspsite.Asp.Hosting.SQL.Injection

description-logoDescription

It indicates a possible exploit of a SQL injection vulnerability in Fullaspsite Asp Hosting Sitesi.
This flaw is due to an input validation error in the "windows.asp" script that does not validate the "kategori_id" parameter before being used in SQL statements, which could be exploited by malicious users to conduct SQL injection attacks.

affected-products-logoAffected Products

Fullaspsite Asp Hosting Sitesi.

Impact logoImpact

The execution of arbitrary SQL commands on the system.

recomended-action-logoRecommended Actions

Currently we are not aware of any vendor-supplied patches for this issue.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)