CVE-2023-4231

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Sep 15, 2023

Updated: Sep 20, 2023

Summary

CVE-2023-4231 is an SQL Injection vulnerability affecting the Cevik Informatics Online Payment System. The flaw stems from improper handling of special elements in SQL commands, enabling attackers to execute malicious SQL queries and potentially access sensitive data. This issue is present in versions of the Online Payment System prior to 4.09. Successful exploitation could lead to unauthorized data access, compromise of payment information, and other significant security risks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Ethereum Go Ethereum

Affected Vendors

Ethereum...

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/snx-fF
https://www.cve.org/CVERecord?id=CVE-2023-4231
https://nvd.nist.gov/vuln/detail/CVE-2023-4231

Back to Vulnerability Database