Bugra Turkoglu

**Name of the Vulnerable Software and Affected Versions** Izmir Katip Celebi University UBYS versions prior to 23.03.16 **Description** The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows Stored XSS. This means that an attacker can inject malicious scripts into the website, potentially affecting users who access the page. **Recommendations** For versions prior to 23.03.16, update to a version 23.03.16 or later to resolve the issue. As a temporary workaround, consider restricting user input to prevent malicious scripts from being injected into the web page.

**Name of the Vulnerable Software and Affected Versions** Talent Software UNIS versions prior to 28376 **Description** The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows Reflected XSS. This can be exploited by injecting malicious scripts into web pages. **Recommendations** For versions prior to 28376, update to a version 28376 or later to resolve the issue. As a temporary workaround, consider restricting user input to prevent malicious script injection until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Firmanet Software and Technology Customer Relation Manager versions prior to 2022.03.13 **Description** The issue is related to improper neutralization of input during web page generation, which allows Cross-Site Scripting (XSS). This means an attacker can inject malicious scripts into the website, potentially leading to unauthorized access or control. **Recommendations** For versions prior to 2022.03.13, update to a version released after 2022.03.13 to resolve the issue. As a temporary workaround, consider restricting user input to prevent malicious script injection until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Firmanet Software and Technology Customer Relation Manager versions prior to 2022.03.13 **Description** The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting (XSS). This allows an attacker to perform Cross-Site Scripting attacks. **Recommendations** For versions prior to 2022.03.13, update to a version released after 2022.03.13 to resolve the issue. As a temporary workaround, consider restricting user input to minimize the risk of exploitation.