CVE-2025-11954

HIGH 8.0

CSRF in Sitemio's WISECP

CVSS Score

8.0

EPSS Score

0.0%

EPSS Percentile

0th

Cross-Site request forgery (CSRF) vulnerability in Sitemio Information Technologies Trade Ltd. Co. WISECP allows Cross Site Request Forgery. This issue affects WISECP: through 20022026. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

CWE	CWE-352
Vendor	sitemio information technologies trade ltd. co.
Product	wisecp
Published	May 20, 2026
Last Updated	May 20, 2026

Stay Ahead of the Next One

Get instant alerts for sitemio information technologies trade ltd. co. wisecp

Be the first to know when new high vulnerabilities affecting sitemio information technologies trade ltd. co. wisecp are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

Required

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Affected Versions

Sitemio Information Technologies Trade Ltd. Co. / WISECP

0 ≤ 20022026

References

NVD ↗ CVE.org ↗ EPSS Data ↗

siberguvenlik.gov.tr: https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-26-0262

Credits

Akıner KISA