CVE-2023-4671

CRITICAL

9.8

CVSS Severity Score

EPSS Score0.0990%

EPSS Percentile37.76th

Published2023年12月28日

Last Modified2026年5月21日

Vulnerability Description

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Talent Software ECOP allows Command Line Execution through SQL Injection. This issue affects ECOP: before 32255.

Affected Platforms (CPE)

📦

Talentyazilim

Ecop

= 32255

References & Advisories

🔗 https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-23-0737

🔗 https://www.usom.gov.tr/bildirim/tr-23-0737

相关漏洞威胁

CVE-2023-46726.1

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Talent Software ECOP allows ...

CVE-2023-10919.8

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Alpata Licensed Warehousing ...

CVE-2023-12519.8

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Akinsoft Wolvox. This issue ...

CVE-2023-10649.8

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Uzay Baskul Weighbridge Auto...