CVE-2023-2957

CRITICAL

9.8

CVSS Severity Score

EPSS Score0.0360%

EPSS Percentile2.11th

Published2023年7月13日

Last Modified2026年5月22日

Vulnerability Description

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Lisa Software Florist Site allows SQL Injection. This issue affects Florist Site: before 3.0.

Affected Platforms (CPE)

📦

Lisayazilim

Florist Site

< 3.0

References & Advisories

🔗 https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-23-0403

🔗 https://www.usom.gov.tr/bildirim/tr-23-0403

関連する脆弱性情報

CVE-2023-29079.8

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Marksoft allows SQL Injectio...

CVE-2023-20469.8

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Yontem Informatics Vehicle T...

CVE-2023-343629.8

MOVEit Transfer SQL Injection vulnerability allows unauthenticated attackers to gain unauthorized access to MOVEit Transfer's data...

CVE-2023-345759.8

SQL injection vulnerability in PrestaShop opartsavecart through 2.0.7 allows remote attackers to run arbitrary SQL commands via Op...