PT-2026-7085 · Zirve Information Technologies · E-Taxpayer Accounting Website
Çetin Bi̇ni̇ci̇
·
Published
2026-02-09
·
Updated
2026-02-09
·
CVE-2025-7799
CVSS v3.1
8.6
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:L |
Name of the Vulnerable Software and Affected Versions
Zirve Information Technologies Inc. E-Taxpayer Accounting Website versions through 07082025
Description
The E-Taxpayer Accounting Website contains a flaw due to improper neutralization of input during web page generation, leading to a Reflected Cross-site Scripting (XSS) condition. This allows for the execution of malicious scripts within the context of a user's browser. The issue impacts the web application and could potentially allow an attacker to inject malicious code.
Recommendations
Versions through 07082025 should be updated or patched as soon as possible.
Fix
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
E-Taxpayer Accounting Website