|
Description
|
|
Multiple vulnerabilities have been identified in Netkamp Emlak Scripti, which could be exploited by remote attackers to execute arbitrary SQL queries or scripting code.
The first issue is caused by an input validation error in the "iletisim.asp" script that does not validate the "Email" parameter before being displayed, which could be exploited by malicious people to conduct cross site scripting attacks.
The second vulnerability is caused by an input validation error in the "detay.asp" script that does not validate the "ilan_id" parameter before being used in SQL statements, which could be exploited by malicious people to conduct SQL injection attacks.
|
