CVE-2025-7015

MEDIUM 5.7

Session Hijacking in Akinsoft's QR Menu

CVSS Score

5.7

EPSS Score

0.1%

EPSS Percentile

19th

Session Fixation vulnerability in Akın Software Computer Import Export Industry and Trade Ltd. QR Menu allows Session Fixation. This issue affects QR Menu: before s1.05.12.

CWE	CWE-384
Vendor	akın software computer import export industry and trade ltd.
Product	qr menu
Published	Jan 29, 2026
Last Updated	Jun 5, 2026

Stay Ahead of the Next One

Get instant alerts for akın software computer import export industry and trade ltd. qr menu

Be the first to know when new medium vulnerabilities affecting akın software computer import export industry and trade ltd. qr menu are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

Required

Scope

Unchanged

Confidentiality

High

Integrity

None

Availability

None

Affected Versions

Akın Software Computer Import Export Industry and Trade Ltd. / QR Menu

0 < s1.05.12

References

NVD ↗ CVE.org ↗ EPSS Data ↗

usom.gov.tr: https://www.usom.gov.tr/bildirim/tr-26-0006 siberguvenlik.gov.tr: https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-26-0006

Credits

Şahnur Eren ALOĞLU