CyberSec.Space Logo
CVEブラウザに戻る

CVE-2023-6145

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.1630%
EPSS Percentile37.81th
Published2023年12月21日
Last Modified2026年5月20日

Vulnerability Description

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in İstanbul Soft Informatics and Consultancy Limited Company Softomi Advanced C2C Marketplace Software allows SQL Injection. This issue affects Softomi Advanced C2C Marketplace Software: before 12122023.

Affected Platforms (CPE)

📦
Softomi

Advanced C2c Marketplace Software

< 12122023

References & Advisories

🔗 https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-23-0724
🔗 https://www.usom.gov.tr/bildirim/tr-23-0724
🔗 https://www.usom.gov.tr/bildirim/tr-23-0724

関連する脆弱性情報

CVE-2023-30499.8

Unrestricted Upload of File with Dangerous Type vulnerability in TMT Lockcell allows Command Injection. This issue affects Lockce...

CVE-2023-30509.8

Reliance on Cookies without Validation and Integrity Checking in a Security Decision vulnerability in TMT Lockcell allows Privileg...

CVE-2023-30489.8

Authorization Bypass Through User-Controlled Key vulnerability in TMT Lockcell allows Authentication Abuse, Authentication Bypass....

CVE-2023-28529.8

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Softmed SelfPatron allows SQ...