CVE-2023-2957

CRITICAL

9.8

CVSS Severity Score

EPSS Score0.0360%

EPSS Percentile2.11th

Published2023年7月13日

Last Modified2026年5月22日

Vulnerability Description

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Lisa Software Florist Site allows SQL Injection. This issue affects Florist Site: before 3.0.

Affected Platforms (CPE)

📦

Lisayazilim

Florist Site

< 3.0

References & Advisories

🔗 https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-23-0403

🔗 https://www.usom.gov.tr/bildirim/tr-23-0403

相關漏洞威脅

CVE-2023-08399.8

Improper Protection for Outbound Error Messages and Alert Signals vulnerability in ProMIS Process Co. InSCADA allows Account Footp...

CVE-2023-09399.8

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in NTN Information Technologies...

CVE-2023-11149.8

Missing Authorization vulnerability in Eskom e-Belediye allows Information Elicitation. This issue affects e-Belediye: from 1.0.0...

CVE-2023-09799.8

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in MedData MedDataPACS allows S...