{"id":154,"date":"2025-07-10T09:39:08","date_gmt":"2025-07-10T09:39:08","guid":{"rendered":"https:\/\/www.mucahitakin.com\/blog\/?p=154"},"modified":"2025-07-10T09:39:40","modified_gmt":"2025-07-10T09:39:40","slug":"sql-injection-nedir","status":"publish","type":"post","link":"https:\/\/www.mucahitakin.com\/blog\/sql-injection-nedir\/","title":{"rendered":"SQL Injection Nedir?"},"content":{"rendered":"\n

SQL Injection<\/strong>, k\u00f6t\u00fc niyetli kullan\u0131c\u0131lar\u0131n bir web sitesinin veri taban\u0131na do\u011frudan eri\u015fim sa\u011flamaya \u00e7al\u0131\u015ft\u0131\u011f\u0131, en bilinen g\u00fcvenlik a\u00e7\u0131klar\u0131ndan biridir.<\/p>\n\n\n\n

Ad\u0131ndan da anla\u015f\u0131laca\u011f\u0131 gibi bu sald\u0131r\u0131, SQL (Structured Query Language<\/em><\/strong>) komutlar\u0131n\u0131 \u201cenjeksiyon\u201d yoluyla sisteme dahil ederek ger\u00e7ekle\u015ftirilir.<\/p>\n\n\n\n

Ama\u00e7: Veri \u00e7almak, kullan\u0131c\u0131 bilgilerini g\u00f6rmek, sisteme zarar vermek\u2026<\/strong><\/h3>\n\n\n\n

\u00d6rnek Senaryo<\/strong><\/h2>\n\n\n\n

Diyelim ki sitende \u015fu tarz bir URL mevcut:<\/p>\n\n\n\n

https://mucahitakin.com\/blog.php?id=2<\/code><\/pre>\n\n\n\n
Bu URL, blog.php dosyas\u0131n\u0131n id=2 olan i\u00e7eri\u011fi veritaban\u0131ndan \u00e7ekip g\u00f6stermesi anlam\u0131na gelir.<\/p>\n\n\n\n
\/\/ zay\u0131f (savunmas\u0131z) \u00f6rnek\n$id = $_GET['id'];\n$sql = \"SELECT * FROM blog WHERE id = $id\";\n$result = mysqli_query($conn, $sql);<\/code><\/pre>\n\n\n\n
E\u011fer yukar\u0131daki gibi do\u011frudan GET parametresi SQL sorgusuna ekleniyorsa<\/strong>, b\u00fcy\u00fck tehlike var demektir.<\/p>\n\n\n\n
SQL Injection Denemesi:<\/strong><\/h2>\n\n\n\n
K\u00f6t\u00fc niyetli biri URL\u2019yi \u015fu hale getirirse:<\/p>\n\n\n\n
https:\/\/mucahitakin.com\/blog.php?id=2 OR 1=1<\/code><\/pre>\n\n\n\n
Sorgu \u015fu hale d\u00f6n\u00fc\u015f\u00fcr:<\/p>\n\n\n\n
SELECT * FROM blog WHERE id = 2 OR 1=1;<\/code><\/pre>\n\n\n\n
Bu durumda veritaban\u0131ndaki t\u00fcm i\u00e7erikler<\/strong> d\u00f6nebilir. Daha k\u00f6t\u00fcs\u00fc:<\/p>\n\n\n\n
https:\/\/mucahitakin.com\/blog.php?id=0 UNION SELECT username, password FROM users<\/code><\/pre>\n\n\n\n
E\u011fer tablo yap\u0131n uygunsa, bu sald\u0131r\u0131 ile admin kullan\u0131c\u0131lar\u0131n\u0131n bilgileri<\/strong> bile \u00e7ekilebilir.<\/p>\n\n\n\n
SQL Injection ile Neler Yap\u0131labilir?<\/strong><\/h2>\n\n\n\n
Yap\u0131labilecek \u015eey<\/strong><\/th>A\u00e7\u0131klama<\/strong><\/th><\/tr><\/thead>
 T\u00fcm kullan\u0131c\u0131lar\u0131 listeleme<\/td>UNION SELECT kullan\u0131larak<\/td><\/tr>
 Admin \u015fifresini g\u00f6rme<\/td>SHA-1, MD5 hash \u00e7alma<\/td><\/tr>
 Veri silme<\/td>DELETE FROM … enjeksiyonu ile<\/td><\/tr>
 T\u00fcm veritaban\u0131n\u0131 ke\u015ffetme<\/td>information_schema.tables kullan\u0131larak<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n
G\u00fcvenli Kodlama Nas\u0131l Yap\u0131l\u0131r?<\/strong><\/h2>\n\n\n\n
1.\u00a0Haz\u0131rlanm\u0131\u015f (Prepared) Sorgular Kullan<\/strong><\/h3>\n\n\n\n
\/\/ G\u00fcvenli PDO \u00f6rne\u011fi\n$id = $_GET['id'];\n$stmt = $pdo->prepare(\"SELECT * FROM blog WHERE id = ?\");\n$stmt->execute([$id]);<\/code><\/pre>\n\n\n\n
2.\u00a0Veri do\u011frulamas\u0131 yap<\/strong><\/h3>\n\n\n\n
$id = (int)$_GET['id']; \/\/ sadece say\u0131ya izin ver<\/code><\/pre>\n\n\n\n
3.\u00a0ORM sistemleri kullan<\/strong><\/h3>\n\n\n\n
Laravel, Symfony gibi framework\u2019ler varsay\u0131lan olarak SQL Injection\u2019a kar\u015f\u0131 g\u00fcvenlidir:<\/p>\n\n\n\n
$blog = Blog::find($id);<\/code><\/pre>\n\n\n\n
G\u00fcvenlik Testi:  SQL A\u00e7\u0131\u011f\u0131 Var m\u0131?<\/strong><\/h2>\n\n\n\n
Senin siten mucahitakin.com \u00fczerinde g\u00fcvenlik taramas\u0131 veya test i\u00e7in OWASP ZAP, Burp Suite veya basit curl ile yap\u0131lan baz\u0131 testler \u015funlar olabilir:<\/p>\n\n\n\n
curl \"https:\/\/mucahitakin.com\/blog.php?id=1 OR 1=1\"<\/code><\/pre>\n\n\n\n
Ya da HTML form \u00fczerinden \u015fu tarz payloadlar denenebilir:<\/p>\n\n\n\n
' OR '1'='1\n' UNION SELECT null, username, password FROM users --<\/code><\/pre>\n\n\n\n
UYARI<\/strong>: Bu testler, kendi siten d\u0131\u015f\u0131nda<\/strong> yap\u0131l\u0131rsa yasa d\u0131\u015f\u0131d\u0131r!<\/p>\n\n\n\n
Kendi sitende<\/strong> test yapman tamamen yasal ve te\u015fvik edilen bir davran\u0131\u015ft\u0131r.<\/p>\n\n\n\n
\ud83d\udd0d SQL Injection Nas\u0131l Tespit Edilir?<\/strong><\/h2>\n\n\n\n
    \n
  1. URL\u2019deki parametrelerle oynayarak beklenmeyen i\u00e7eriklerin gelmesi<\/li>\n\n\n\n
  2. Log dosyalar\u0131nda ola\u011fand\u0131\u015f\u0131 SQL hata mesajlar\u0131n\u0131n g\u00f6r\u00fclmesi<\/li>\n\n\n\n
  3. G\u00fcvenlik taray\u0131c\u0131lar\u0131 (ZAP, sqlmap, etc.)<\/li>\n\n\n\n
  4. Web uygulama g\u00fcvenlik duvarlar\u0131 (WAF) loglar\u0131nda anormal sorgular<\/li>\n<\/ol>\n\n\n\n
    \u2705 G\u00fcvenlik Kontrol Listesi<\/strong><\/h2>\n\n\n\n
    Kontrol<\/strong><\/th>Durum<\/strong><\/th><\/tr><\/thead>
    Haz\u0131rlanm\u0131\u015f sorgular kullan\u0131l\u0131yor mu?<\/td>\u2705<\/td><\/tr>
    Kullan\u0131c\u0131 giri\u015fi filtreleniyor mu?<\/td>\u2705<\/td><\/tr>
    Hatalar kullan\u0131c\u0131ya g\u00f6sterilmiyor mu?<\/td>\u2705<\/td><\/tr>
    Formlarda CAPTCHA kullan\u0131l\u0131yor mu?<\/td>\u26a0\ufe0f<\/td><\/tr>
    WAF veya IDS aktif mi?<\/td>\u26a0\ufe0f<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n
    Sql G\u00fcvende mi?<\/strong><\/h2>\n\n\n\n
    E\u011fer sitende yukar\u0131da anlatt\u0131\u011f\u0131m gibi do\u011frudan parametre ile SQL sorgusu yap\u0131l\u0131yorsa<\/strong>, ciddi risk alt\u0131ndas\u0131n.<\/p>\n\n\n\n
    Ama e\u011fer Laravel<\/strong> gibi modern framework\u2019ler<\/strong> kullan\u0131yorsan, \u00e7o\u011fu zaman varsay\u0131lan olarak bu t\u00fcr sald\u0131r\u0131lara kar\u015f\u0131 koruma alt\u0131ndas\u0131n.<\/p>\n\n\n\n
    SQL Injection Test Script <\/strong><\/h2>\n\n\n\n
    \/\/ test-sql.php\n$url = \"https:\/\/mucahitakin.com\/blog.php?id=1%20OR%201=1\";\n$html = file_get_contents($url);\nif (strpos($html, 't\u00fcm i\u00e7erik') !== false) {\n    echo \"SQL Injection a\u00e7\u0131\u011f\u0131 olabilir!\";\n} else {\n    echo \"Muhtemelen g\u00fcvenli.\";\n}<\/code><\/pre>\n\n\n\n
    SQL Injection, k\u00fc\u00e7\u00fck bir ihmalin \u00e7ok b\u00fcy\u00fck sonu\u00e7lara yol a\u00e7abilece\u011fi bir g\u00fcvenlik a\u00e7\u0131\u011f\u0131d\u0131r.<\/strong><\/p>\n\n\n\n
    Login Sayfas\u0131<\/h3>\n\n\n\n
    Login sayfas\u0131nda kullan\u0131c\u0131dan al\u0131nan username ve password hemen hemen a\u015fa\u011f\u0131daki sorguya benzer yap\u0131lar ile \u00e7al\u0131\u015fmaktad\u0131r.<\/p>\n\n\n\n
    SELECT * FROM users WHERE username = 'INPUT' and password='md5(INPUT)' LIMIT 1;<\/pre>\n\n\n\n
    \n
    Her username ve password ikilisinin uniq olmas\u0131 beklenir. Herhangi bir durum olursa uygulaman\u0131n hata vermemesi i\u00e7in LIMIT ile d\u00f6nen sonu\u00e7 s\u0131n\u0131rland\u0131r\u0131l\u0131r.<\/p>\n<\/blockquote>\n\n\n\n
    Bu yap\u0131da sald\u0131rgan olarak sorguyu manip\u00fcle edebilece\u011fimiz 1 adet de\u011fi\u015fken mevcuttur. \u015eifre<\/strong> alan\u0131na yaz\u0131lacak her payload\u0131n md5 al\u0131naca\u011f\u0131 i\u00e7in sorgu i\u00e7erisinde [a-f][0-9] \u2018dan ibaret bir string olu\u015facakt\u0131r. Bu nedenle sql injection sald\u0131r\u0131s\u0131 username \u00fczerinden ger\u00e7ekle\u015fmek durumundad\u0131r.<\/p>\n\n\n\n
    Blind SQLi sald\u0131r\u0131lar\u0131 ger\u00e7ekle\u015ftirirken\u00a0<, \u00a0> , =<\/strong>\u00a0gibi karakterleri kullan\u0131r\u0131z.\u00a0Bu karakter ise hedef uygulamada YASAKLI durumdad\u0131r.\u00a0username<\/strong>\u00a0de\u011fi\u015fkeni i\u00e7erisinde bu karakterlerden herhangi biri varsa yaz\u0131l\u0131m otamatik olarak ilgili karakteri kald\u0131rmaktad\u0131r.<\/p>\n\n\n\n
    Unutma: G\u00fcvenlik, geli\u015ftirmenin en \u00f6nemli par\u00e7as\u0131d\u0131r.<\/p>\n\n\n\n
    Kaynak\u00e7a : https:\/\/www.mehmetince.net\/spesifik-sql-injection-zafiyetlerinin-sqlmap-ile-exploit-edilmesi\/<\/strong><\/em><\/a><\/p>\n","protected":false},"excerpt":{"rendered":"
    SQL Injection, k\u00f6t\u00fc niyetli kullan\u0131c\u0131lar\u0131n bir web sitesinin veri taban\u0131na do\u011frudan eri\u015fim sa\u011flamaya \u00e7al\u0131\u015ft\u0131\u011f\u0131, en bilinen g\u00fcvenlik a\u00e7\u0131klar\u0131ndan biridir. Ad\u0131ndan da anla\u015f\u0131laca\u011f\u0131 gibi bu sald\u0131r\u0131, SQL (Structured Query Language) komutlar\u0131n\u0131 \u201cenjeksiyon\u201d yoluyla sisteme dahil ederek ger\u00e7ekle\u015ftirilir. Ama\u00e7: Veri \u00e7almak, kullan\u0131c\u0131 bilgilerini g\u00f6rmek, sisteme zarar vermek\u2026 \u00d6rnek Senaryo Diyelim ki sitende \u015fu tarz bir URL mevcut: […]<\/p>\n","protected":false},"author":2,"featured_media":155,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[108],"tags":[119,118,117,120,109],"class_list":["post-154","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-web-guvenligi","tag-guvenlik-testi","tag-sql","tag-sql-injection","tag-sql-injection-nasil-tespit-edilir","tag-web-guvenligi"],"yoast_head":"\nSQL Injection Nedir? - Mucahit Akin<\/title>\n<meta name=\"description\" content=\"SQL Injection Nedir? , Developer'\u0131n g\u00f6z\u00fcncen sql injection nedir ? nas\u0131l korunur ? Nas\u0131l \u00f6nlemler al\u0131nabilir?\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.mucahitakin.com\/blog\/sql-injection-nedir\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"SQL Injection Nedir? - Mucahit Akin\" \/>\n<meta property=\"og:description\" content=\"SQL Injection Nedir? , Developer'\u0131n g\u00f6z\u00fcncen sql injection nedir ? nas\u0131l korunur ? Nas\u0131l \u00f6nlemler al\u0131nabilir?\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.mucahitakin.com\/blog\/sql-injection-nedir\/\" \/>\n<meta property=\"og:site_name\" content=\"Mucahit Akin\" \/>\n<meta property=\"article:published_time\" content=\"2025-07-10T09:39:08+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2025-07-10T09:39:40+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.mucahitakin.com\/blog\/wp-content\/uploads\/2025\/07\/sql-injection.png\" \/>\n\t<meta property=\"og:image:width\" content=\"2048\" \/>\n\t<meta property=\"og:image:height\" content=\"1838\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"Mucahit Akin\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Mucahit Akin\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.mucahitakin.com\/blog\/sql-injection-nedir\/\",\"url\":\"https:\/\/www.mucahitakin.com\/blog\/sql-injection-nedir\/\",\"name\":\"SQL Injection Nedir? - Mucahit Akin\",\"isPartOf\":{\"@id\":\"https:\/\/www.mucahitakin.com\/blog\/#website\"},\"datePublished\":\"2025-07-10T09:39:08+00:00\",\"dateModified\":\"2025-07-10T09:39:40+00:00\",\"author\":{\"@id\":\"https:\/\/www.mucahitakin.com\/blog\/#\/schema\/person\/b9afcbf2f9b8279516ed7d93361c751b\"},\"description\":\"SQL Injection Nedir? , Developer'\u0131n g\u00f6z\u00fcncen sql injection nedir ? nas\u0131l korunur ? Nas\u0131l \u00f6nlemler al\u0131nabilir?\",\"breadcrumb\":{\"@id\":\"https:\/\/www.mucahitakin.com\/blog\/sql-injection-nedir\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.mucahitakin.com\/blog\/sql-injection-nedir\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.mucahitakin.com\/blog\/sql-injection-nedir\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.mucahitakin.com\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"SQL Injection Nedir?\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.mucahitakin.com\/blog\/#website\",\"url\":\"https:\/\/www.mucahitakin.com\/blog\/\",\"name\":\"Mucahit Akin\",\"description\":\"Developer\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.mucahitakin.com\/blog\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.mucahitakin.com\/blog\/#\/schema\/person\/b9afcbf2f9b8279516ed7d93361c751b\",\"name\":\"Mucahit Akin\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.mucahitakin.com\/blog\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/d73f6416cb16f0abe000533f648d6f824e3d9e0d73d0c686c8196cf8bcfa9957?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/d73f6416cb16f0abe000533f648d6f824e3d9e0d73d0c686c8196cf8bcfa9957?s=96&d=mm&r=g\",\"caption\":\"Mucahit Akin\"},\"sameAs\":[\"https:\/\/mucahitakin.com\"],\"url\":\"https:\/\/www.mucahitakin.com\/blog\/author\/akin\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"SQL Injection Nedir? - Mucahit Akin","description":"SQL Injection Nedir? , Developer'\u0131n g\u00f6z\u00fcncen sql injection nedir ? nas\u0131l korunur ? Nas\u0131l \u00f6nlemler al\u0131nabilir?","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.mucahitakin.com\/blog\/sql-injection-nedir\/","og_locale":"en_US","og_type":"article","og_title":"SQL Injection Nedir? - Mucahit Akin","og_description":"SQL Injection Nedir? , Developer'\u0131n g\u00f6z\u00fcncen sql injection nedir ? nas\u0131l korunur ? Nas\u0131l \u00f6nlemler al\u0131nabilir?","og_url":"https:\/\/www.mucahitakin.com\/blog\/sql-injection-nedir\/","og_site_name":"Mucahit Akin","article_published_time":"2025-07-10T09:39:08+00:00","article_modified_time":"2025-07-10T09:39:40+00:00","og_image":[{"width":2048,"height":1838,"url":"https:\/\/www.mucahitakin.com\/blog\/wp-content\/uploads\/2025\/07\/sql-injection.png","type":"image\/png"}],"author":"Mucahit Akin","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Mucahit Akin","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/www.mucahitakin.com\/blog\/sql-injection-nedir\/","url":"https:\/\/www.mucahitakin.com\/blog\/sql-injection-nedir\/","name":"SQL Injection Nedir? - Mucahit Akin","isPartOf":{"@id":"https:\/\/www.mucahitakin.com\/blog\/#website"},"datePublished":"2025-07-10T09:39:08+00:00","dateModified":"2025-07-10T09:39:40+00:00","author":{"@id":"https:\/\/www.mucahitakin.com\/blog\/#\/schema\/person\/b9afcbf2f9b8279516ed7d93361c751b"},"description":"SQL Injection Nedir? , Developer'\u0131n g\u00f6z\u00fcncen sql injection nedir ? nas\u0131l korunur ? Nas\u0131l \u00f6nlemler al\u0131nabilir?","breadcrumb":{"@id":"https:\/\/www.mucahitakin.com\/blog\/sql-injection-nedir\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.mucahitakin.com\/blog\/sql-injection-nedir\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.mucahitakin.com\/blog\/sql-injection-nedir\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.mucahitakin.com\/blog\/"},{"@type":"ListItem","position":2,"name":"SQL Injection Nedir?"}]},{"@type":"WebSite","@id":"https:\/\/www.mucahitakin.com\/blog\/#website","url":"https:\/\/www.mucahitakin.com\/blog\/","name":"Mucahit Akin","description":"Developer","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.mucahitakin.com\/blog\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/www.mucahitakin.com\/blog\/#\/schema\/person\/b9afcbf2f9b8279516ed7d93361c751b","name":"Mucahit Akin","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.mucahitakin.com\/blog\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/d73f6416cb16f0abe000533f648d6f824e3d9e0d73d0c686c8196cf8bcfa9957?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/d73f6416cb16f0abe000533f648d6f824e3d9e0d73d0c686c8196cf8bcfa9957?s=96&d=mm&r=g","caption":"Mucahit Akin"},"sameAs":["https:\/\/mucahitakin.com"],"url":"https:\/\/www.mucahitakin.com\/blog\/author\/akin\/"}]}},"_links":{"self":[{"href":"https:\/\/www.mucahitakin.com\/blog\/wp-json\/wp\/v2\/posts\/154","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.mucahitakin.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.mucahitakin.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.mucahitakin.com\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.mucahitakin.com\/blog\/wp-json\/wp\/v2\/comments?post=154"}],"version-history":[{"count":2,"href":"https:\/\/www.mucahitakin.com\/blog\/wp-json\/wp\/v2\/posts\/154\/revisions"}],"predecessor-version":[{"id":157,"href":"https:\/\/www.mucahitakin.com\/blog\/wp-json\/wp\/v2\/posts\/154\/revisions\/157"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.mucahitakin.com\/blog\/wp-json\/wp\/v2\/media\/155"}],"wp:attachment":[{"href":"https:\/\/www.mucahitakin.com\/blog\/wp-json\/wp\/v2\/media?parent=154"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.mucahitakin.com\/blog\/wp-json\/wp\/v2\/categories?post=154"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.mucahitakin.com\/blog\/wp-json\/wp\/v2\/tags?post=154"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}