CVE Showcase
A chronological log of vulnerabilities, zero-days, and security exposures discovered during authorized penetration testing and vulnerability research.
CVE-2025-11024
CVSS 9.8Blind SQL Injection (SQLi)
An Improper Neutralization of Special Elements used in an SQL Command vulnerability (CWE-89) allowing Blind SQL Injection in Akıllı Ticaret's E-Commerce Pack. Affects versions before 4.5.001. CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H.
CVE-2025-6577
CVSS 9.8SQL Injection (SQLi)
An Improper Neutralization of Special Elements used in an SQL Command vulnerability (CWE-89) allowing SQL Injection in Akıllı Ticaret's E-Commerce Website. Affects versions before 4.5.001. CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H.
CVE-2025-7744
CVSS 9.8SQL Injection (SQLi)
An Improper Neutralization of Special Elements used in an SQL Command vulnerability (CWE-89) allowing SQL Injection in Dolusoft Omaspot. Affects versions before 12.09.2025. CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H.
CVE-2025-7743
CVSS 7.5Cleartext Transmission of Sensitive Information
A Cleartext Transmission of Sensitive Information vulnerability (CWE-319). This issue could allow for the interception of sensitive data and potential privilege escalation. Reported and processed through TR-CERT.