Vulnerability Description
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Ekol Informatics Website Template allows SQL Injection. This issue affects Website Template: through 20231215.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ekolbilisim | Web Sablonu Yazilimi | <= 20231215 |
Related Weaknesses (CWE)
References
- https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-24-0001
- https://www.usom.gov.tr/bildirim/tr-24-0001Third Party Advisory
- https://www.usom.gov.tr/bildirim/tr-24-0001Third Party Advisory
FAQ
What is CVE-2023-6436?
CVE-2023-6436 is a vulnerability with a CVSS score of 9.8 (CRITICAL). Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Ekol Informatics Website Template allows SQL Injection. This issue affects Website Template: thro...
How severe is CVE-2023-6436?
CVE-2023-6436 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2023-6436?
Check the references section above for vendor advisories and patch information. Affected products include: Ekolbilisim Web Sablonu Yazilimi.