2 matches found
CVE-2023-1050
CVE-2023-1050 affects the As Koc Energy Web Report System prior to version 23.03.10. The vulnerability is an improper neutralization of special elements used in an SQL command, i.e., an SQL Injection in the web report system. The CVSS data indicates a high-impact attack with network access, no us...
CVE-2023-1051
CVE-2023-1051 describes a reflected Cross-site Scripting vulnerability in the As Koc Energy Web Report System, due to improper neutralization of input during web page generation. Affected versions are prior to 23.03.10. The in-document sources consistently identify the issue as a Cross-site Scrip...