Skip to the content.

CVE-2023-22583 - SQL Injection in Danfoss AK-EM 100

CVE CVE-2023-22583
Discovered by
  • Jony Schats and Stan Plasmeijer (HackDefense)
Affected products
Product Affected Unaffected Unknown
Danfoss AK-EM 100 = <
everything else
Page author Max van der Horst
CVSS Base score: 10 (CRITICAL)
Problem type(s) CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
Last modified 25 May 2023 17:46


The web forms of Danfoss AK-EM 100 allow for SQL injection in the login forms.

JSON version