Vulnerability Description
NLB mKlik Macedonia 3.3.12 contains a SQL injection vulnerability in international transfer parameters that allows attackers to manipulate database queries. Attackers can inject arbitrary SQL code through unsanitized input to potentially disclose sensitive information from the mobile banking application.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Nlb | Mklik Makedonija | 3.3.12 |
Related Weaknesses (CWE)
References
- https://cxsecurity.com/issue/WLB-2023100040Issue TrackingThird Party Advisory
- https://packetstormsecurity.com/files/175113/NLB-mKlik-Makedonija-3.3.12-SQL-InjThird Party Advisory
- https://play.google.com/store/apps/details?id=hr.asseco.android.jimba.tutunskamkProduct
- https://www.vulncheck.com/advisories/nlb-mklik-macedonia-sql-injection-via-interThird Party Advisory
- https://www.zeroscience.mk/en/vulnerabilities/ZSL-2023-5797.phpThird Party Advisory
- https://cxsecurity.com/issue/WLB-2023100040Issue TrackingThird Party Advisory
- https://www.zeroscience.mk/en/vulnerabilities/ZSL-2023-5797.phpThird Party Advisory
FAQ
What is CVE-2023-54163?
CVE-2023-54163 is a vulnerability with a CVSS score of 7.5 (HIGH). NLB mKlik Macedonia 3.3.12 contains a SQL injection vulnerability in international transfer parameters that allows attackers to manipulate database queries. Attackers can inject arbitrary SQL code thr...
How severe is CVE-2023-54163?
CVE-2023-54163 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-54163?
Check the references section above for vendor advisories and patch information. Affected products include: Nlb Mklik Makedonija.