25 matches found
EUVD-2025-25384
Malicious code in bioql PyPI...
EUVD-2025-25270
Malicious code in bioql PyPI...
CVE-2025-5261
Authorization Bypass Through User-Controlled Key vulnerability in Pik Online Yazılım Çözümleri A.Ş. Pik Online allows Exploitation of Trusted Identifiers. This issue affects Pik Online: before 3.1.5...
CVE-2025-5260
Server-Side Request Forgery SSRF vulnerability in Pik Online Yazılım Çözümleri A.Ş. Pik Online allows Server Side Request Forgery. This issue affects Pik Online: before 3.1.5...
CVE-2025-5261
Authorization Bypass Through User-Controlled Key vulnerability in Pik Online Yazılım Çözümleri A.Ş. Pik Online allows Exploitation of Trusted Identifiers. This issue affects Pik Online: before 3.1.5...
CVE-2025-5260
Server-Side Request Forgery SSRF vulnerability in Pik Online Yazılım Çözümleri A.Ş. Pik Online allows Server Side Request Forgery. This issue affects Pik Online: before 3.1.5...
CVE-2025-5261 IDOR in PozitifIK's Pik Online
Authorization Bypass Through User-Controlled Key vulnerability in Pik Online Yazılım Çözümleri A.Ş. Pik Online allows Exploitation of Trusted Identifiers. This issue affects Pik Online: before 3.1.5...
CVE-2025-5261
Pik Online Yazılım Çözümleri A.Ş. Pik Online contains an authorization bypass issue in versions before 3.1.5 , caused by exploitation of a user-controlled key which enables exploitation of trusted identifiers. CVE-2025-5261 is described as an IDOR-style vulnerability affecting Pik Online prior to...
CVE-2025-5261 IDOR in PozitifIK's Pik Online
Authorization Bypass Through User-Controlled Key vulnerability in Pik Online Yazılım Çözümleri A.Ş. Pik Online allows Exploitation of Trusted Identifiers. This issue affects Pik Online: before 3.1.5...
CVE-2025-5261
Authorization Bypass Through User-Controlled Key vulnerability in Pik Online Yazılım Çözümleri A.Ş. Pik Online allows Exploitation of Trusted Identifiers. This issue affects Pik Online: before 3.1.5...
CVE-2025-5260 SSRF in PozitifIK's Pik Online
Server-Side Request Forgery SSRF vulnerability in Pik Online Yazılım Çözümleri A.Ş. Pik Online allows Server Side Request Forgery. This issue affects Pik Online: before 3.1.5...
CVE-2025-5260
Server-Side Request Forgery SSRF vulnerability in Pik Online Yazılım Çözümleri A.Ş. Pik Online allows Server Side Request Forgery. This issue affects Pik Online: before 3.1.5...
CVE-2025-5260 SSRF in PozitifIK's Pik Online
Server-Side Request Forgery SSRF vulnerability in Pik Online Yazılım Çözümleri A.Ş. Pik Online allows Server Side Request Forgery. This issue affects Pik Online: before 3.1.5...
CVE-2025-5260
CVE-2025-5260 is an SSRF vulnerability in Pik Online Yazılım Çözümleri A.Ş. Pik Online prior to version 3.1.5. The issue is triggered via server-side requests from the application, allowing an attacker to induce requests to internal or external resources. The CVE is corroborated by multiple sourc...
PozitifIK Pik Online 代码问题漏洞
PozitifIK Pik Online is an online exam application from PozitifIK, Inc. A security vulnerability exists in PozitifIK Pik Online versions prior to 3.1.5 that stems from vulnerability to server-side request forgery attacks...
PT-2025-33964 · Unknown · Pik Online
Name of the Vulnerable Software and Affected Versions: Pik Online versions prior to 3.1.5 Description: Pik Online contains a Server-Side Request Forgery SSRF vulnerability. This allows for Server-Side Request Forgery. Recommendations: Update Pik Online to version 3.1.5 or later...
PT-2025-34026 · Unknown · Pik Online
Name of the Vulnerable Software and Affected Versions: Pik Online versions prior to 3.1.5 Description: An authorization bypass issue exists in Pik Online due to exploitation of trusted identifiers through a user-controlled key. Recommendations: Update Pik Online to version 3.1.5 or later...
PozitifIK Pik Online 安全漏洞
PozitifIK Pik Online is an online exam application from PozitifIK, Inc. A security vulnerability exists in PozitifIK Pik Online versions prior to 3.1.5, which stems from a user control key bypassing authorization and could lead to the exploitation of trusted identifiers...
CVE-2024-11216
Authorization Bypass Through User-Controlled Key, Exposure of Private Personal Information to an Unauthorized Actor vulnerability in PozitifIK Pik Online allows Account Footprinting, Session Hijacking. This issue affects Pik Online: before 3.1.5...
CVE-2024-11216
Authorization Bypass Through User-Controlled Key, Exposure of Private Personal Information to an Unauthorized Actor vulnerability in PozitifIK Pik Online allows Account Footprinting, Session Hijacking. This issue affects Pik Online: before 3.1.5...