Lucene search
K

16 matches found

EUVD
EUVD
added 2 hours ago4 views

EUVD-2026-42546

Improper neutralization of input during web page generation 'cross-site scripting' vulnerability in Inrove Software and Internet Services BiEticaret allows Reflected XSS. This issue affects BiEticaret: before v3.3.57...

6.1CVSS5.9AI score
Exploits0References2
EUVD
EUVD
added 2 hours ago4 views

EUVD-2026-42548

Improper neutralization of special elements used in an SQL command 'SQL injection' vulnerability in Inrove Software and Internet Services BiEticaret allows SQL Injection. This issue affects BiEticaret: before v3.3.57...

9.8CVSS6AI score
Exploits0References2
NVD
NVD
added 4 hours ago7 views

CVE-2026-5955

Improper neutralization of special elements used in an SQL command 'SQL injection' vulnerability in Inrove Software and Internet Services BiEticaret allows SQL Injection. This issue affects BiEticaret: before v3.3.57...

9.8CVSS
Exploits0References1
NVD
NVD
added 4 hours ago6 views

CVE-2026-5793

Improper neutralization of input during web page generation 'cross-site scripting' vulnerability in Inrove Software and Internet Services BiEticaret allows Reflected XSS. This issue affects BiEticaret: before v3.3.57...

6.1CVSS
Exploits0References1
Cvelist
Cvelist
added 6 hours ago8 views

CVE-2026-5955 SQLi in Inrove Software's BiEticaret

Improper neutralization of special elements used in an SQL command 'SQL injection' vulnerability in Inrove Software and Internet Services BiEticaret allows SQL Injection. This issue affects BiEticaret: before v3.3.57...

9.8CVSS
Exploits0References1
CVE
CVE
added 6 hours ago9 views

CVE-2026-5955

BiEticaret (Inrove Software and Internet Services) is affected by CVE-2026-5955 due to improper neutralization of special elements in SQL commands, enabling SQL injection. The issue affects BiEticaret prior to version 3.3.57. CVSS 3.1 metrics indicate a Network attack vector, no privileges requir...

9.8CVSS6AI score
Exploits0References1
ATTACKERKB
ATTACKERKB
added 6 hours ago2 views

CVE-2026-5793

Improper neutralization of input during web page generation 'cross-site scripting' vulnerability in Inrove Software and Internet Services BiEticaret allows Reflected XSS. This issue affects BiEticaret: before v3.3.57...

6.1CVSS5.9AI score
Exploits0References2
Cvelist
Cvelist
added 6 hours ago7 views

CVE-2026-5793 XSS in Inrove Software's BiEticaret

Improper neutralization of input during web page generation 'cross-site scripting' vulnerability in Inrove Software and Internet Services BiEticaret allows Reflected XSS. This issue affects BiEticaret: before v3.3.57...

6.1CVSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/02/20 1:25 p.m.7 views

CVE-2025-8350

Execution After Redirect EAR, Missing Authentication for Critical Function vulnerability in Inrove Software and Internet Services BiEticaret CMS allows Authentication Bypass, HTTP Response Splitting.This issue affects BiEticaret CMS: from 2.1.13 through 19022026. NOTE: The vendor was contacted...

9.8CVSS5.5AI score0.00547EPSS
Exploits0References1
NVD
NVD
added 2026/02/19 12:16 p.m.9 views

CVE-2025-8350

Execution After Redirect EAR, Missing Authentication for Critical Function vulnerability in Inrove Software and Internet Services BiEticaret CMS allows Authentication Bypass, HTTP Response Splitting. This issue affects BiEticaret CMS: from 2.1.13 through 19022026. NOTE: The vendor was contacted...

9.8CVSS0.00547EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/02/19 11:30 a.m.5 views

CVE-2025-8350 Authentication Bypass with Redirect in BiEticaret Software's BiEticaret CMS

Execution After Redirect EAR, Missing Authentication for Critical Function vulnerability in Inrove Software and Internet Services BiEticaret CMS allows Authentication Bypass, HTTP Response Splitting. This issue affects BiEticaret CMS: from 2.1.13 through 19022026. NOTE: The vendor was contacted...

9.8CVSS5.5AI score0.00547EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/02/19 11:30 a.m.30 views

CVE-2025-8350 Authentication Bypass with Redirect in BiEticaret Software's BiEticaret CMS

Execution After Redirect EAR, Missing Authentication for Critical Function vulnerability in Inrove Software and Internet Services BiEticaret CMS allows Authentication Bypass, HTTP Response Splitting. This issue affects BiEticaret CMS: from 2.1.13 through 19022026. NOTE: The vendor was contacted...

9.8CVSS0.00547EPSS
Exploits0References2
CVE
CVE
added 2026/02/19 11:30 a.m.11 views

CVE-2025-8350

Technical details about CVE-2025-8350 are not publicly available in the supplied documents; no concrete exploit, patch, or vendor details are provided here. Monitor for updates.

9.8CVSS5.5AI score0.00547EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/02/19 11:30 a.m.4 views

CVE-2025-8350

Execution After Redirect EAR, Missing Authentication for Critical Function vulnerability in Inrove Software and Internet Services BiEticaret CMS allows Authentication Bypass, HTTP Response Splitting. This issue affects BiEticaret CMS: from 2.1.13 through 19022026. NOTE: The vendor was contacted...

9.8CVSS5.5AI score0.00547EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2026/02/19 12:0 a.m.9 views

Inrove BiEticaret CMS 安全漏洞

Inrove BiEticaret CMS is an e-commerce content management system developed by the Turkish company Inrove. There are security vulnerabilities in the Inrove BiEticaret CMS 2.1.13 version up to 19022026 and earlier versions. These vulnerabilities stem from redirection-based execution and the lack of...

9.8CVSS5.9AI score0.00547EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/02/19 12:0 a.m.8 views

PT-2026-20804

Execution After Redirect EAR, Missing Authentication for Critical Function vulnerability in Inrove Software and Internet Services BiEticaret CMS allows Authentication Bypass, HTTP Response Splitting.This issue affects BiEticaret CMS: from 2.1.13 through 19022026. NOTE: The vendor was contacted...

9.8CVSS5.5AI score0.00547EPSS
Exploits0References1
Rows per page
Query Builder