CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-35070

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in VegaGroup Web Collection allows SQL Injection. This issue affects Web Collection: before 31197.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 24.5%

CVSS Severity

CVSS v3 Score 9.8

References

https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-23-0406
https://www.usom.gov.tr/bildirim/tr-23-0406
https://www.usom.gov.tr/bildirim/tr-23-0406

Products affected by CVE-2023-35070

Vegagroup » Web Collection » Version: Any

cpe:2.3:a:vegagroup:web_collection:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-35070

Products

Pricing

Contact Us