← volver
CVE-2023-4674

SQLi in Yazteks E-Commerce Software

EPSS 0.3%CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Yaztek Software Technologies and Computer Systems E-Commerce Software allows SQL Injection. This issue affects E-Commerce Software: through 20231229.  NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
Productos afectados
Yaztek Software Technologies and Computer Systems · E-Commerce Software

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-23-0741https://www.usom.gov.tr/bildirim/tr-23-0741