SQL Injection Vulnerability in E1 Informatics Web Application
CVE-2024-13174

8.6HIGH

Key Information:

Vendor: E1 Informatics
Status: Web Application
Vendor: CVE Published:; 16 September 2025

🔔 Create E1 Informatics Vulnerability Alert

What is CVE-2024-13174?

An SQL Injection vulnerability has been identified in the E1 Informatics Web Application, allowing attackers to inject malicious SQL statements via user inputs. This oversight in input validation can lead to unauthorized access to sensitive data and manipulation of the application’s database. It is crucial for users of the affected web application to implement security measures to mitigate the risks associated with this vulnerability.

Affected Version(s)

Web Application 0 <= 20250916

References

https://www.usom.gov.tr/bildirim/tr-25-0259

CVSS V3.1

Score:

8.6

Severity:

HIGH

Confidentiality:

High

Integrity:

Low

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 16, 2025
Vulnerability Reserved
Jan 7, 2025

Credit

Hüseyin ÜZÜM