SQL Injection Vulnerability in Yukseloglu Filter B2B Login Platform
CVE-2024-13148

9.8CRITICAL

Key Information:

Vendor: Yukseloglu Filter
Status: B2b Login Platform
Vendor: CVE Published:; 27 February 2025

Summary

A vulnerability exists in the Yukseloglu Filter B2B Login Platform that allows attackers to exploit improper neutralization of special elements within SQL commands. This SQL Injection flaw could enable unauthorized access to sensitive data, jeopardizing system integrity and user information. Users are advised to update to the latest version to mitigate potential threats.

Affected Version(s)

B2B Login Platform 0 < 16.01.2025

References

https://www.usom.gov.tr/bildirim/tr-25-0045

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Feb 27, 2025
Vulnerability Reserved
Jan 6, 2025

Credit

Yunus ORNEK