SQL injection vulnerability in EfesTech E-Kontör and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.
https://exchange.xforce.ibmcloud.com/vulnerabilities/41419
http://www.securityfocus.com/archive/1/489989/100/0/threaded