CVE-2023-1508

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Adam Retail Automation Systems Mobilmen Terminal Software allows SQL Injection. This issue affects Mobilmen Terminal Software: before 3.

critical 9.8 CVSS 3.1

Published: May 23, 2023

Modified: Jun 1, 2026

Vendor: Adampos

Product: Mobilmen El Terminali Yazilimi

Description

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Adam Retail Automation Systems Mobilmen Terminal Software allows SQL Injection.

This issue affects Mobilmen Terminal Software: before 3.

References

https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-23-0284
https://www.usom.gov.tr/bildirim/tr-23-0284
https://www.usom.gov.tr/bildirim/tr-23-0284

CVSS Breakdown

Version	3.1
Score	9.8 / 10
Severity	critical

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Weakness (CWE)

CWE-89

Affected Product

Vendor	Adampos
Product	Mobilmen El Terminali Yazilimi