CVE-2023-5045

Name of the Vulnerable Software and Affected Versions Biltay Technology Kayisi versions prior to 1286

Description The issue is related to an SQL Injection vulnerability, which allows for the improper neutralization of special elements used in an SQL command. This can lead to SQL Injection and Command Line Execution through SQL Injection.

Recommendations For versions prior to 1286, update to a version that includes the fix for this issue. As a temporary workaround, consider restricting access to SQL commands to minimize the risk of exploitation. Avoid using user-input data directly in SQL queries until the issue is resolved.