CVE-2023-54163

Name of the Vulnerable Software and Affected Versions NLB mKlik Macedonia version 3.3.12

Description The software contains a SQL injection issue in the international transfer parameters. This allows attackers to manipulate database queries by injecting arbitrary SQL code through unsanitized input. Successful exploitation could lead to the disclosure of sensitive information from the mobile banking application. The vulnerable parameters are used during international transfers.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.