CVE-2025-14320

CRITICAL CVSS 9.8 View on NVD ↗

Description

Improper neutralization of input during web page generation ('cross-site scripting') vulnerability in Tegsoft Management and Information Services Trade Limited Company Online Support Application allows Reflected XSS. This issue affects Online Support Application: from V3 through 31122025.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References

https://www.usom.gov.tr/bildirim/tr-26-0142

Published: May 04, 2026 09:15 UTC Modified: May 04, 2026 09:15 UTC