CVE-2026-7498

HIGH NVD

CVSS Score 8.8

Severity HIGH

Published May 18, 2026

Vendor unknown

Description

Improper neutralization of input during web page generation ('cross-site scripting') vulnerability in Basamak Information Technology Consulting and Organization Trade Ltd. Co. DernekWeb allows Stored XSS. This issue affects DernekWeb: through 30122025.

References

https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-26-0258