Oduyo Financial Technology CVE debriefs

CVE-2023-6677

A critical SQL injection vulnerability in Oduyo Financial Technology Online Collection allows unauthenticated remote attackers to execute arbitrary SQL commands, potentially leading to complete database compromise. The vulnerability affects all versions prior to 1.0.2. The issue was disclosed in February 2024 and modified in May 2026. Organizations using affected versions should upgrade immediately to ver [truncated]