CVE-2025-8587

Name of the Vulnerable Software and Affected Versions AKCE Software Technology R&D Industry and Trade Inc. SKSPro versions through 07012026

Description The software contains an Improper Neutralization of Special Elements used in an SQL Command issue, specifically a SQL Injection. This allows for SQL Injection attacks. The vulnerability exists due to insufficient sanitization of input data used in SQL queries. The vulnerability could allow an attacker to manipulate database queries, potentially leading to unauthorized access, data modification, or data deletion. No information is available regarding the number of potentially affected devices or real-world incidents where this issue was exploited. The vulnerability affects the processing of SQL commands, potentially through vulnerable parameters used in database interactions.

Recommendations Versions prior to 07012026 are affected. At the moment, there is no information about a newer version that contains a fix for this vulnerability.