Critical severity9.8NVD Advisory· Published Feb 19, 2026· Updated Jun 5, 2026
CVE-2025-8350
CVE-2025-8350
Description
Execution After Redirect (EAR), Missing Authentication for Critical Function vulnerability in Inrove Software and Internet Services BiEticaret CMS allows Authentication Bypass, HTTP Response Splitting.
This issue affects BiEticaret CMS: from 2.1.13 through 19022026.
NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
Affected products
1- Range: >=2.1.13 <=19022026
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.