CVE-2024-7076

CRITICAL

9.8

CVSS Severity Score

EPSS Score0.0720%

EPSS Percentile20.65th

PublishedSep 4, 2024

Last ModifiedJun 3, 2026

Vulnerability Description

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Semtek Informatics Software Consulting Inc. Semtek Sempos allows Blind SQL Injection. This issue affects Semtek Sempos: through 31072024.

Affected Platforms (CPE)

📦

Semtekyazilim

Semtek Sempos

<= 31072024

References & Advisories

🔗 https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-24-1396

🔗 https://www.usom.gov.tr/bildirim/tr-24-1396

Related Vulnerabilities

CVE-2024-70789.8

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Semtek Informatics Software ...

CVE-2024-70776.1

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Semtek Informatics Software ...

CVE-2024-309410.0

Backdoor in upstream xz-utils package allows SSH remote code execution (XZ Utils backdoor). Malicious code was discovered in the u...

CVE-2024-1315210.0

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in BSS Software Mobuy Online Ma...