CyberSec.Space Logo
Back to CVE Browser

CVE-2023-4671

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.0990%
EPSS Percentile37.76th
PublishedDec 28, 2023
Last ModifiedMay 21, 2026

Vulnerability Description

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Talent Software ECOP allows Command Line Execution through SQL Injection. This issue affects ECOP: before 32255.

Affected Platforms (CPE)

📦
Talentyazilim

Ecop

= 32255

References & Advisories

🔗 https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-23-0737
🔗 https://www.usom.gov.tr/bildirim/tr-23-0737
🔗 https://www.usom.gov.tr/bildirim/tr-23-0737

Related Vulnerabilities

CVE-2023-46726.1

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Talent Software ECOP allows ...

CVE-2023-12519.8

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Akinsoft Wolvox. This issue ...

CVE-2023-343629.8

MOVEit Transfer SQL Injection vulnerability allows unauthenticated attackers to gain unauthorized access to MOVEit Transfer's data...

CVE-2023-10919.8

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Alpata Licensed Warehousing ...