CVE-2024-13151

Summary

CWE - 89 - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in ESBI Information and Telecommunication Industry and Trade Limited Company Auto Service Software allows SQL Injection.

This issue affects Auto Service Software: before v.2025.10.01.

Affected Software

VendorProductVersion RangeStatus
ESBI Information and Telecommunication Industry and Trade Limited CompanyAuto Service Software0 < v.2025.10.01affected

Weaknesses

  • CWE - 89 - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: total

References