← back
CVE-2024-13151

SQLi in ESBI Informatics's Auto Service Software

CVSS 9.8 CRITICALEPSS 0.3%
CWE - 89 - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in ESBI Information and Telecommunication Industry and Trade Limited Company Auto Service Software allows SQL Injection. This issue affects Auto Service Software: before v.2025.10.01.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected products
ESBI Information and Telecommunication Industry and Trade Limited Company · Auto Service Software

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-25-0273https://www.usom.gov.tr/bildirim/tr-25-0273