CVE-2023-1251

Description

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Akinsoft Wolvox. This issue affects Wolvox: before 8.02.03.

CVSS breakdown

CVSS 3.1

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Affected products

Akinsoft / Wolvox0 – 8.02.03

References

MISChttps://www.usom.gov.tr/bildirim/tr-23-0136
MISChttps://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-23-0136