CVE-2025-6830

Summary

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Xpoda Türkiye Information Technology Inc. Password Module allows SQL Injection.

This issue affects Password Module: through 11022026.

Affected Software

VendorProductVersion RangeStatus
Xpoda Türkiye Information Technology Inc.Password Module0 <= 11022026affected

Weaknesses

  • CWE-89: CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: total

References