CRITICAL
Marksoft
CVE published 2023-06-19
CVE-2023-2907
CVE-2023-2907 is a critical SQL injection vulnerability in Marksoft. The CVE description says it affects Marksoft Mobile v7.1.7, Login 1.4, and API:20230605, while the NVD record explicitly lists Marksoft Mobile through 7.1.7 as vulnerable. Because the issue is network-reachable, unauthenticated, and rated CVSS 9.8, defenders should treat it as urgent. No public Known Exploited Vulnerabilities (KEV) listi [truncated]