CVE Catalog

CVE-2025-6577

Critical
Published: Translated: NVD NIST

Summary

CVE-2025-6577 describes an improper neutralization of special elements used in SQL commands, leading to SQL injection vulnerability in Akilli Commerce Software. This issue affects the E-Commerce Website versions before 4.5.001.

Risk Assessment

Exploitation of this vulnerability could lead to unauthorized access to the database, jeopardizing the confidentiality and integrity of the organization's data.

Recommendation

It is recommended to update the software to version 4.5.001 or later to mitigate this vulnerability.

Original NVD description (English source)

Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in Akilli Commerce Software Technologies Ltd. Co. E-Commerce Website allows SQL Injection. This issue affects E-Commerce Website: before 4.5.001.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS