CVE-2023-2064

CRITICAL

9.8

CVSS Severity Score

EPSS Score0.0580%

EPSS Percentile19.74th

PublishedMay 24, 2023

Last ModifiedMay 22, 2026

Vulnerability Description

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Minova Technology eTrace allows SQL Injection. This issue affects eTrace: before 23.05.20.

Affected Platforms (CPE)

📦

Minovateknoloji

Etrace

< 23.05.20

References & Advisories

🔗 https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-23-0288

🔗 https://www.usom.gov.tr/bildirim/tr-23-0288

Related Vulnerabilities

CVE-2005-19667.5

The eTrace_validaddr function in eTrace plugin for e107 portal allows remote attackers to execute arbitrary commands via shell met...

CVE-2023-27139.8

Authorization Bypass Through User-Controlled Key vulnerability in "Rental Module" developed by third-party for Ideasoft's E-comme...

CVE-2023-343629.8

MOVEit Transfer SQL Injection vulnerability allows unauthenticated attackers to gain unauthorized access to MOVEit Transfer's data...

CVE-2023-350649.8

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Satos Satos Mobile allows SQ...