PatchSiren

VegaGroup CVE debriefs

These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.

CRITICAL VegaGroup CVE published 2023-07-13

CVE-2023-35070

CVE-2023-35070 is a critical SQL injection vulnerability in VegaGroup Web Collection affecting versions before 31197. The NVD record rates it CVSS 3.1 9.8, reflecting a network-exploitable issue with no privileges or user interaction required. Exposed deployments should treat remediation as urgent.