Lucene search
K

9 matches found

Cvelist
Cvelist
added 2025/08/20 8:31 a.m.12 views

CVE-2025-5261 IDOR in PozitifIK's Pik Online

Authorization Bypass Through User-Controlled Key vulnerability in Pik Online Yazılım Çözümleri A.Ş. Pik Online allows Exploitation of Trusted Identifiers. This issue affects Pik Online: before 3.1.5...

7.5CVSS0.00304EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/08/20 8:31 a.m.7 views

CVE-2025-5261 IDOR in PozitifIK's Pik Online

Authorization Bypass Through User-Controlled Key vulnerability in Pik Online Yazılım Çözümleri A.Ş. Pik Online allows Exploitation of Trusted Identifiers. This issue affects Pik Online: before 3.1.5...

7.5CVSS5.4AI score0.00304EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/08/20 8:15 a.m.5 views

CVE-2025-5260 SSRF in PozitifIK's Pik Online

Server-Side Request Forgery SSRF vulnerability in Pik Online Yazılım Çözümleri A.Ş. Pik Online allows Server Side Request Forgery. This issue affects Pik Online: before 3.1.5...

8.6CVSS5.4AI score0.00261EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/08/20 8:15 a.m.11 views

CVE-2025-5260 SSRF in PozitifIK's Pik Online

Server-Side Request Forgery SSRF vulnerability in Pik Online Yazılım Çözümleri A.Ş. Pik Online allows Server Side Request Forgery. This issue affects Pik Online: before 3.1.5...

8.6CVSS0.00261EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/08/20 12:0 a.m.3 views

PozitifIK Pik Online 代码问题漏洞

PozitifIK Pik Online is an online exam application from PozitifIK, Inc. A security vulnerability exists in PozitifIK Pik Online versions prior to 3.1.5 that stems from vulnerability to server-side request forgery attacks...

8.6CVSS6.8AI score0.00261EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/08/20 12:0 a.m.3 views

PozitifIK Pik Online 安全漏洞

PozitifIK Pik Online is an online exam application from PozitifIK, Inc. A security vulnerability exists in PozitifIK Pik Online versions prior to 3.1.5, which stems from a user control key bypassing authorization and could lead to the exploitation of trusted identifiers...

7.5CVSS6.6AI score0.00304EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/03/07 1:7 p.m.5 views

CVE-2024-11216

Authorization Bypass Through User-Controlled Key, Exposure of Private Personal Information to an Unauthorized Actor vulnerability in PozitifIK Pik Online allows Account Footprinting, Session Hijacking. This issue affects Pik Online: before 3.1.5...

7.6CVSS5.8AI score0.00283EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/03/05 1:2 p.m.10 views

CVE-2024-11216 Broken Access Control in PozitifIK's Pik Online

Authorization Bypass Through User-Controlled Key, Exposure of Private Personal Information to an Unauthorized Actor vulnerability in PozitifIK Pik Online allows Account Footprinting, Session Hijacking. This issue affects Pik Online: before 3.1.5...

7.6CVSS0.00283EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/03/05 12:0 a.m.2 views

PozitifIK Pik Online 安全漏洞

PozitifIK Pik Online is an online exam application from PozitifIK, Inc. A security vulnerability exists in PozitifIK Pik Online version 05.03.2025 and earlier, which stems from an authorization bypass that could lead to account footprint tracking and session hijacking...

7.6CVSS6.6AI score0.00283EPSS
Exploits0References3
Rows per page
Query Builder