← volver
CVE-2023-6145

SQLi in Softomi E-commerce Software

CVSS 9.8 CRITICALEPSS 0.5%CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in İstanbul Soft Informatics and Consultancy Limited Company Softomi Advanced C2C Marketplace Software allows SQL Injection. This issue affects Softomi Advanced C2C Marketplace Software: before 12122023.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Productos afectados
İstanbul Soft Informatics and Consultancy Limited Company · Softomi Advanced C2C Marketplace Software

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-23-0724https://www.usom.gov.tr/bildirim/tr-23-0724