๐Ÿ” CVE Alert

CVE-2026-8297

CRITICAL 9.8

SQLi in GIS Informatics' GisLab Laboratory Management System

CVSS Score
9.8
EPSS Score
0.0%
EPSS Percentile
0th

Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in Gis Informatics Engineering Consulting Laboratory R&D and Software Services Inc. GisLab Laboratory Management System allows SQL Injection. This issue affects GisLab Laboratory Management System: from 1.4.03 through 08072026.

CWE CWE-89
Vendor gis informatics engineering consulting laboratory r&d and software services inc.
Product gislab laboratory management system
Published Jul 17, 2026
Last Updated Jul 17, 2026
Stay Ahead of the Next One

Get instant alerts for gis informatics engineering consulting laboratory r&d and software services inc. gislab laboratory management system

Be the first to know when new critical vulnerabilities affecting gis informatics engineering consulting laboratory r&d and software services inc. gislab laboratory management system are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Affected Versions

Gis Informatics Engineering Consulting Laboratory R&D and Software Services Inc. / GisLab Laboratory Management System
1.4.03 โ‰ค 08072026

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
siberguvenlik.gov.tr: https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-26-0573

Credits

Mehmet Abdullah ADBAY