Primary

Context

Pik Online Server-Side Request Forgery Vulnerability

Vulnerability

A Server-Side Request Forgery (SSRF) vulnerability exists in Pik Online software developed by Pik Online Yazılım Çözümleri A.Ş., affecting versions prior to 3.1.5. This vulnerability allows attackers to send crafted requests from the server, potentially leading to unauthorized actions or information disclosure.

Impact

Exploitation of this vulnerability could allow attackers to manipulate server-side requests, potentially accessing internal resources or services that are not normally exposed to the public.

Remediation

Users are advised to upgrade to version 3.1.5 or later.

Added: Aug 20, 2025, 9:21 AM

Updated: Aug 20, 2025, 9:21 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

1.9

exploitability

7.4

remediation

7.7

relevance

0.4

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

1.9

exploitability

7.4

remediation

7.7

relevance

0.4

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Pik Online Server-Side Request Forgery Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating