PT-2026-22139 · Dokuzsoft Technology · E-Commerce Product

Ferit Özner

Published

2026-02-26

Updated

2026-06-04

CVE-2025-14343

CVSS v3.1

7.6

High

Vector

AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H

Name of the Vulnerable Software and Affected Versions Dokuzsoft Technology Ltd. E-Commerce Product versions through 10122025

Description The software contains an Improper Neutralization of Input During Web Page Generation issue, leading to a Reflected Cross-site Scripting (XSS) condition. The issue allows for the execution of malicious scripts through web pages. The vulnerable product is developed by Dokuzsoft Technology Ltd.Şti.

Recommendations Versions prior to 10122025 should be updated.

Fix

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2025-14343

Affected Products

E-Commerce Product

PT-2026-22139 · Dokuzsoft Technology · E-Commerce Product

CVE-2025-14343

Weakness Enumeration

Related Identifiers

Affected Products

References · 9