CVE-2025-5260

{"id": "CVE-2025-5260", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "[email protected]", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.6, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "LOW", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 4.7, "exploitabilityScore": 3.9}]}, "published": "2025-08-20T09:15:27.787", "references": [{"url": "https://www.usom.gov.tr/bildirim/tr-25-0201", "source": "[email protected]"}], "vulnStatus": "Awaiting Analysis", "weaknesses": [{"type": "Primary", "source": "[email protected]", "description": [{"lang": "en", "value": "CWE-918"}]}], "descriptions": [{"lang": "en", "value": "Server-Side Request Forgery (SSRF) vulnerability in Pik Online Yaz\u0131l\u0131m \u00c7\u00f6z\u00fcmleri A.\u015e. Pik Online allows Server Side Request Forgery.This issue affects Pik Online: before 3.1.5."}, {"lang": "es", "value": "Vulnerabilidad de Server-Side Request Forgery (SSRF) en Pik Online Yaz?l?m \u00c7\u00f6z\u00fcmleri A.?. Pik Online permite Server-Side Request Forgery. Este problema afecta a Pik Online: versiones anteriores a 3.1.5."}], "lastModified": "2025-08-20T14:39:07.860", "sourceIdentifier": "[email protected]"}