CVE-2026-7498 – Stored XSS in Basamak Informatics’ DernekWeb

CVE ID :CVE-2026-7498

Published : May 18, 2026, 8:54 a.m. | 13 minutes ago

Description :Improper neutralization of input during web page generation (‘cross-site scripting’) vulnerability in Basamak Information Technology Consulting and Organization Trade Ltd. Co. DernekWeb allows Stored XSS.

This issue affects DernekWeb: through 30122025.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more… 

نوشته های مشابه

CVE-2026-3471 – Opening a window with {{javascript:alert()}} as URL causes crash in the Mattermost Desktop App

CVE-2026-4643 – Calling window.close() from server-side content causes crash in the Mattermost Desktop App

CVE-2026-6333 – SSRF via Host Header Spoofing in Custom Slash Commands

CVE-2026-6345 – Prevent password disclosure and force reset during Slack import