Unrated severityNVD Advisory· Published Feb 27, 2026· Updated Mar 25, 2026

SQLi in Dayneks Software's E-Commerce Platform

CVE-2025-11251

Description

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Dayneks Software Industry and Trade Inc. E-Commerce Platform allows SQL Injection.This issue affects E-Commerce Platform: through 27022026.

NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

Affected products

Oracle Corporation/Commerce Platformllm-fuzzy
Range: <=27022026
Dayneks Software Industry and Trade Inc./E-Commerce Platformv5
Range: 0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.usom.gov.tr/bildirim/tr-26-0084mitrethird-party-advisory

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000