CVE-2025-8587

Description

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in AKCE Software Technology R&D Industry and Trade Inc. SKSPro allows SQL Injection. This issue affects SKSPro: through 07012026.

CVSS breakdown

CVSS 3.1

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

Low

Integrity

Low

Availability

High

Affected products

AKCE Software Technology R&D Industry and Trade Inc. / SKSPro0 – 07012026

References

MISChttps://www.usom.gov.tr/bildirim/tr-26-0011
MISChttps://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-26-0011