CVE-2007-1971

Name of the Vulnerable Software and Affected Versions Gazi Okul Sitesi 2007

Description The issue allows remote attackers to execute arbitrary SQL commands. This is achieved by injecting malicious SQL code into the query string of the fotokategori.asp page.

Recommendations For Gazi Okul Sitesi 2007, consider validating and sanitizing user input to prevent SQL injection attacks. As a temporary workaround, restrict access to the fotokategori.asp page until a patch is available.