CVE-2023-4671

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Talent Software ECOP allows Command Line Execution through SQL Injection.This issue affects ECOP: before 32255...

CVE-2023-4672

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Talent Software ECOP allows Reflected XSS.This issue affects ECOP: before 32255...

Sql injection

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Talent Software ECOP allows Command Line Execution through SQL Injection.This issue affects ECOP: before 32255...

Cross site scripting

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Talent Software ECOP allows Reflected XSS.This issue affects ECOP: before 32255...

CVE-2023-4672

CVE-2023-4672 describes an Improper Neutralization of Input During Web Page Generation (XSS) in Talent Software ECOP disclosed as a reflected XSS affecting ECOP: before 32255. Supporting sources (NVD/NIST, CVE listings) consistently attribute the issue to input handling during web page generation...

CVE-2023-4671

Talent Software ECOP (content distribution platform) is affected by an SQL Injection in versions prior to 32255, caused by improper neutralization of special elements in SQL commands, which can lead to Command Line Execution. The CVE-2023-4671 entry lists a CRITICAL impact (CVSS 3.1 base score 9....

CVE-2023-4671 SQLi in Talent Soft's ECOP

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Talent Software ECOP allows Command Line Execution through SQL Injection. This issue affects ECOP: before 32255...

PT-2023-30168

Name of the Vulnerable Software and Affected Versions Talent Software ECOP versions prior to 32255 Description The issue is related to an Improper Neutralization of Special Elements used in an SQL Command, also known as 'SQL Injection', which allows Command Line Execution through SQL Injection...

Talent Software ECOP Cross-Site Scripting Vulnerability

Talent Software ECOP is a content distribution platform from Talent Software. A cross-site scripting vulnerability exists in Talent Software ECOP versions prior to 32255, which arises from improper neutralization of inputs during web page generation, resulting in cross-site scripting...

Talent Software ECOP SQL Injection Vulnerability

Talent Software ECOP is a content distribution platform from Talent Software. A SQL injection vulnerability exists in Talent Software ECOP versions prior to 32255 that stems from improper neutralization of special elements used in SQL commands, resulting in SQL injection...

PT-2023-30169

Name of the Vulnerable Software and Affected Versions Talent Software ECOP versions prior to 32255 Description The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows Reflected XSS. This means that an attacker can injec...