CNNVD-202512-5046 Information

CNNVD ID

CNNVD-202512-5046

Related CVE

CVE-2023-54163

• CNNVD Published: 2025-12-30

Description (Chinese)

NLB mKlik Macedonia是北马其顿共和国NLB公司的一个官方移动银行应用程序。 NLB mKlik Macedonia 3.3.12版本存在SQL注入漏洞，该漏洞源于对international transfer参数清理不当，可能导致SQL注入攻击。

Description (English)

NLB mKlik Macedonia is an official mobile banking application of NLB in the Northern Republic of Macedonia. Version 3.3.12 of NLB mKlik Macedonia contains an injection loophole in SQL, which stems from the inappropriate clean-up of international transport parameters, which may lead to an attack on SQL.

Hazard Level

Medium

Vulnerability Type

SQL注入

Affected Vendor

NLB

Published

2025-12-30

Last Modified

2026-02-24

References

https://cxsecurity.com/issue/WLB-2023100040 https://packetstormsecurity.com/files/175113/NLB-mKlik-Makedonija-3.3.12-SQL-Injection.html https://play.google.com/store/apps/details?id=hr.asseco.android.jimba.tutunskamk.production https://www.vulncheck.com/advisories/nlb-mklik-macedonia-sql-injection-via-international-transfer-parameters https://www.zeroscience.mk/en/vulnerabilities/ZSL-2023-5797.php