SQL Injection exists in zorovavi/blog through 2017-10-17 via the id parameter to recept.php.
zorovavi\\/blog project zorovavi\\/blog