CVE-2023-2963

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Oliva Expertise Oliva Expertise EKS allows SQL Injection. This issue affects Oliva Expertise EKS: before 1.2.

critical 9.8 CVSS 3.1

Published: Jul 17, 2023

Modified: May 22, 2026

Description

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Oliva Expertise Oliva Expertise EKS allows SQL Injection.

This issue affects Oliva Expertise EKS: before 1.2.

References

https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-23-0409
https://www.usom.gov.tr/bildirim/tr-23-0409
https://www.usom.gov.tr/bildirim/tr-23-0409

Related CVEs

CVSS Breakdown

Version	3.1
Score	9.8 / 10
Severity	critical

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Weakness (CWE)

CWE-89

Affected Product

Vendor	Olivaekspertiz
Product	Oliva Ekspertiz