This issue affects CityPLus: before V24.29750.1.0.
Analysis and contextual insights are available on OpenCVE Cloud.
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
No advisories yet.
Thu, 21 May 2026 08:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Beyaz Computer Software Design Industry And Trade Ltd. Co.
Beyaz Computer Software Design Industry And Trade Ltd. Co. cityplus |
|
| Vendors & Products |
Beyaz Computer Software Design Industry And Trade Ltd. Co.
Beyaz Computer Software Design Industry And Trade Ltd. Co. cityplus |
Wed, 20 May 2026 16:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Wed, 20 May 2026 15:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Improper neutralization of input during web page generation ('cross-site scripting') vulnerability in Beyaz Computer Software Design Industry and Trade Ltd. Co. CityPLus allows Reflected XSS. This issue affects CityPLus: before V24.29750.1.0. | |
| Title | Reflected XSS in Beyaz Computer's CityPLus | |
| Weaknesses | CWE-79 | |
| References |
| |
| Metrics |
cvssV3_1
|
Status: PUBLISHED
Assigner: TR-CERT
Published:
Updated: 2026-05-20T15:29:22.824Z
Reserved: 2026-04-08T08:51:19.877Z
Link: CVE-2026-5783
Updated: 2026-05-20T15:29:19.533Z
Status : Deferred
Published: 2026-05-20T16:16:26.790
Modified: 2026-06-17T10:59:38.393
Link: CVE-2026-5783
No data.
OpenCVE Enrichment
Updated: 2026-05-21T08:19:09Z