CVE-2007-4119

Name of the Vulnerable Software and Affected Versions Berthanas Ziyaretci Defteri version 2.0

Description The issue allows remote attackers to execute arbitrary SQL commands. This is achieved through SQL injection vulnerabilities in the yonetici.asp file, specifically via the user and Pass fields.

Recommendations For Berthanas Ziyaretci Defteri version 2.0, consider restricting access to the yonetici.asp file until a patch is available, and avoid using the user and Pass fields in a manner that could facilitate SQL injection attacks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.