CVE-2006-1021

Name of the Vulnerable Software and Affected Versions PeHePe Uyelik Sistemi versions 3

Description The issue is related to a cross-site scripting (XSS) vulnerability. It allows remote attackers to inject arbitrary web script or HTML via the kuladi parameter, which is associated with the $kul adi variable.

Recommendations For version 3, as a temporary workaround, consider restricting access to the sol menu.php file until a patch is available. Avoid using the kuladi parameter in the affected endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.