Yagiz Bilgili

#12515of 53,633
21.7Total CVSS
Vulnerabilities · 4
Medium
4
PT-2025-6870
4.8
2025-02-18
Havelsan · Havelsan Liman Mys · CVE-2025-1269
Name of the Vulnerable Software and Affected Versions: HAVELSAN Liman MYS versions prior to 2.1.1 - 1010 Description: The issue affects HAVELSAN Liman MYS, allowing Cross-Site Flashing due to a URL Redirection to Untrusted Site ('Open Redirect') vulnerability. Recommendations: For versions prior to 2.1.1 - 1010, update to version 2.1.1 - 1010 or later to resolve the issue.
PT-2024-38378
5.3
2024-12-04
Restapp · Online Ordering System · CVE-2024-7488
**Name of the Vulnerable Software and Affected Versions** RestApp Inc. Online Ordering System version 8.2.1 **Description** The issue is related to an Improper Input Validation vulnerability that allows Integer Attacks. This vulnerability does not exist in versions prior to 8.2.1 and has been fixed in version 8.2.2. **Recommendations** For version 8.2.1, update to version 8.2.2 to resolve the issue. As a temporary workaround, consider restricting input validation to prevent Integer Attacks until the patch is applied.
PT-2024-38656
6.5
2024-11-22
Special Minds Design · E-Commerce · CVE-2024-7882
**Name of the Vulnerable Software and Affected Versions** Special Minds Design and Software e-Commerce versions prior to 22.11.2024 **Description** The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows for SQL Injection, enabling remote attacks. **Recommendations** For versions prior to 22.11.2024, patch immediately and validate input/output to mitigate the risk. As a temporary workaround, consider validating and sanitizing all user input to the SQL commands to prevent injection attacks. Restrict access to sensitive database elements to minimize the risk of exploitation.
PT-2024-38581
5.1
2024-11-14
Unknown · Vsrm Supplier Relationship Management System · CVE-2024-7787
**Name of the Vulnerable Software and Affected Versions** vSRM Supplier Relationship Management System versions prior to 28.08.2024 **Description** The issue affects the vSRM Supplier Relationship Management System, allowing Reflected XSS, or Cross-Site Scripting (XSS), due to improper neutralization of input during web page generation. This can lead to malicious script execution. **Recommendations** For versions prior to 28.08.2024, upgrade the affected components immediately to resolve the issue. As a temporary workaround, consider restricting access to vulnerable components of the vSRM Supplier Relationship Management System to minimize the risk of exploitation.