{"cve":{"cve_id":"CVE-2023-1091","is_kev":false,"kev_date_added":null,"kev_vendor_project":null,"kev_product":null,"kev_vulnerability_name":null,"kev_short_description":null,"kev_required_action":null,"kev_due_date":null,"kev_known_ransomware":null,"kev_notes":null,"kev_cwes":null,"epss_score":0.00706,"epss_percentile":0.48535,"epss_as_of":"2026-06-23","description":"Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Alpata Licensed Warehousing Automation System allows Command Line Execution through SQL Injection.\n\nThis issue affects Licensed Warehousing Automation System: through 2023.1.01.","published_at":"2023-03-10T07:02:09.307000Z","last_modified_at":null,"cvss_v3_score":9.8,"cvss_v3_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","cvss_v3_severity":"CRITICAL","cvss_v4_score":null,"cvss_v4_vector":null,"cvss_v4_severity":null,"ssvc_decision":null,"ssvc_exploitation":"none","ssvc_automatable":true,"ssvc_technical_impact":"total","cwes":["CWE-89"],"nvd_references":["https://www.usom.gov.tr/bildirim/tr-23-0139","https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-23-0139"],"vuln_status":null,"trending_score":null,"is_trending":false,"has_trended":false,"trended_number_one":false,"trending_peak_score":null,"trending_peak_rank":null,"started_trending_at":null,"trended_number_one_at":null,"summary_generated":null,"summary_generated_at":null,"summary_model":null,"created_at":"2026-06-24T00:09:39.878444Z","updated_at":"2026-06-29T01:24:34.343180Z"},"effective_severity":"CRITICAL","badges":[],"impact_analysis":[],"cvss_v3_decoded":{"version":"3.1","metrics":[{"metric":"AV","name":"Attack Vector","value":"N","value_label":"Network"},{"metric":"AC","name":"Attack Complexity","value":"L","value_label":"Low"},{"metric":"PR","name":"Privileges Required","value":"N","value_label":"None"},{"metric":"UI","name":"User Interaction","value":"N","value_label":"None"},{"metric":"S","name":"Scope","value":"U","value_label":"Unchanged"},{"metric":"C","name":"Confidentiality","value":"H","value_label":"High"},{"metric":"I","name":"Integrity","value":"H","value_label":"High"},{"metric":"A","name":"Availability","value":"H","value_label":"High"}]},"cvss_v4_decoded":{"version":null,"metrics":[]},"affected":[{"vendor_slug":"alpata","vendor_name":"Alpata","product_slug":"licensed-warehousing-automation-system","product_name":"Licensed Warehousing Automation System","version_start":"0","version_start_inclusive":true,"version_end":"2023.1.01","version_end_inclusive":true,"cpe23_uri":"cve5:alpata:licensed-warehousing-automation-system:0:2023.1.01"}],"exploit_refs":[],"news":[],"references":[{"url":"https://www.usom.gov.tr/bildirim/tr-23-0139","source_type":"MISC","tags":[]},{"url":"https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-23-0139","source_type":"MISC","tags":[]}],"timeline":[{"type":"published","at":"2023-03-10T07:02:09.307000Z","label":"CVE published","source":null},{"type":"cvss_changed","at":"2026-06-28T17:25:43.631349Z","label":"CVSS score revised","source":"cvelistv5"},{"type":"cvss_changed","at":"2026-06-28T17:25:43.631349Z","label":"CVSS score revised","source":"cvelistv5"},{"type":"cvss_changed","at":"2026-06-28T17:25:43.631349Z","label":"CVSS score revised","source":"cvelistv5"},{"type":"ssvc_changed","at":"2026-06-29T01:24:34.343180Z","label":"SSVC decision revised","source":"vulnrichment"},{"type":"ssvc_changed","at":"2026-06-29T01:24:34.343180Z","label":"SSVC decision revised","source":"vulnrichment"},{"type":"ssvc_changed","at":"2026-06-29T01:24:34.343180Z","label":"SSVC decision revised","source":"vulnrichment"}]}